Lucene search
GoogleOSV:CVE-2020-13945HistoryDec 07, 2020 - 8:15 p.m.
CVE-2020-13945
2020-12-0720:15:12
Google
osv.dev
9
apache apisix
admin api
ip restriction
access token
security
cve-2020-13945
In Apache APISIX, the user enabled the Admin API and deleted the Admin API access IP restriction rules. Eventually, the default token is allowed to access APISIX management data. This affects versions 1.2, 1.3, 1.4, 1.5.
Related
osv
osv
BIT-apisix-2020-13945
2024-03-06 10:51:26
nuclei
nuclei
Apache APISIX - Insufficiently Protected Credentials
2022-01-16 16:38:55
cve
cve
CVE-2020-13945
2020-12-07 20:15:12
nvd
nvd
CVE-2020-13945
2020-12-07 20:15:12
nessus
nessus
Apache APISIX 1.2 <= 1.5 Information Disclosure
2022-04-20 00:00:00
prion
prion
Design/Logic Flaw
2020-12-07 20:15:00
cvelist
cvelist
CVE-2020-13945
2020-12-07 19:04:52
githubexploit
githubexploit
Exploit for CVE-2020-13945
2022-05-09 12:26:11
zdt
zdt
Apache APISIX Remote Code Execution Exploit
2022-03-07 00:00:00
packetstorm
packetstorm
Apache APISIX Remote Code Execution
2022-03-07 00:00:00
metasploit
metasploit
APISIX Admin API default access token RCE
2022-02-28 17:09:18