Vulnerabilities > CVE-2020-25414 - Inclusion of Functionality from Untrusted Control Sphere vulnerability in Monstra 3.0.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4 which allows remote attackers to execute arbitrary PHP code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |