CVE-2020-28871

Name of the Vulnerable Software and Affected Versions: Monitorr version 1.7.6m

Description: The issue allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload in the upload.php file. This enables remote code execution, posing a significant risk.

Recommendations: For Monitorr version 1.7.6m, consider disabling the upload functionality in upload.php until a patch is available to prevent exploitation. Restrict access to the upload.php file to minimize the risk of unauthorized code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.