CVE-2021-26551

An issue was discovered in SmartFoxServer 2.17.0. An attacker can execute arbitrary Python code, and bypass the javashell.py protection mechanism, by creating /config/ConsoleModuleUnlock.txt and editing /config/admin/admintool.xml to enable the Console module.
Configurations

Configuration 1

cpe:2.3:a:smartfoxserver:smartfoxserver:2.17.0:*:*:*:*:*:*:*

Information

Published : 2021-02-09 08:15

Updated : 2021-02-18 02:08


NVD link : CVE-2021-26551

Mitre link : CVE-2021-26551

Products Affected
No products.
CWE