{"vulnerability": "CVE-2020-12077", "sightings": [{"uuid": "112c63ae-789a-4e25-a357-8243efc14ae5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12077", "type": "seen", "source": "https://t.me/VulnerabilityNews/14898", "content": "The mappress-google-maps-for-wordpress plugin before 2.54.6 for WordPress does not correctly implement capability checks for AJAX functions related to creation/retrieval/deletion of PHP template files, leading to Remote Code Execution. NOTE: this issue exists because of an incomplete fix for CVE-2020-12077.\nPublished at: May 29, 2020 at 06:15PM\nView on website", "creation_timestamp": "2020-05-29T20:46:03.000000Z"}, {"uuid": "753cc6c8-7802-4205-927c-f52467812184", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12077", "type": "seen", "source": "https://t.me/cibsecurity/12406", "content": "ATENTION\u203c New - CVE-2020-12675\n\nThe mappress-google-maps-for-wordpress plugin before 2.54.6 for WordPress does not correctly implement capability checks for AJAX functions related to creation/retrieval/deletion of PHP template files, leading to Remote Code Execution. NOTE: this issue exists because of an incomplete fix for CVE-2020-12077.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-05-29T20:55:02.000000Z"}, {"uuid": "6d8b59dd-d8e8-4386-be72-c575901cc99b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12077", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9010", "content": "#exploit\n1. CVE-2023-41362:\nMyBB Admin Panel RCE\nhttps://github.com/SorceryIE/CVE-2023-41362_MyBB_ACP_RCE\n\n2. CVE-2020-12077:\nMapPress Maps Pro RCE\nhttps://github.com/RandomRobbieBF/CVE-2020-12077", "creation_timestamp": "2023-09-12T11:00:38.000000Z"}, {"uuid": "51abd44f-02ee-4009-85ea-6cd425dd376d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-12077", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/948", "content": "#exploit\n1. CVE-2023-41362:\nMyBB Admin Panel RCE\nhttps://github.com/SorceryIE/CVE-2023-41362_MyBB_ACP_RCE\n\n2. CVE-2020-12077:\nMapPress Maps Pro RCE\nhttps://github.com/RandomRobbieBF/CVE-2020-12077", "creation_timestamp": "2024-08-16T08:24:28.000000Z"}]}