CVEbaza.plCWE DictionaryCWE-553
Common Weakness Enumeration

CWE-553

Command Shell in Externally Accessible Directory

Category: VariantCVE: 1
Description

A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.

CVE vulnerabilities with CWE-553 (1)
8.6
CVSS
HIGH
CVE-2025-66620

An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain files and directories. An attacker with admin access to MicroServer can gain limited shell access, enabling persistence through reverse shells, and the ability to modify or remove data stored in the file system.

pub. 2026-01-07
Information
ID: CWE-553
Type: Variant
Vulnerabilities: 1
MITRE CWE ↗
← CWE Dictionary
CWE-553 — Command Shell in Externally Accessible Directory | CWE Dictionary | CVEbaza.pl