← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-8644 — Actively Exploited: PlaySMS (PlaySMS)

PlaySMS contains a server-side template injection vulnerability that allows for remote code execution.

CVE IDCVE-2020-8644
VendorPlaySMS
ProductPlaySMS
Vulnerability namePlaySMS Server-Side Template Injection Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionPlaySMS contains a server-side template injection vulnerability that allows for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →