Backdoor Vulnerability in Mida eFramework 2.9.0 Allows Unauthorized Administrative Access and Code Execution

Backdoor Vulnerability in Mida eFramework 2.9.0 Allows Unauthorized Administrative Access and Code Execution

CVE-2020-15921 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Mida eFramework through 2.9.0 has a back door that permits a change of the administrative password and access to restricted functionalities, such as Code Execution.

Learn more about our Web Application Penetration Testing UK.