Описание
CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web framework. Prior to version 4.1.9, an improper input validation vulnerability allows attackers to execute CLI routes via HTTP request. Version 4.1.9 contains a patch. There are currently no known workarounds for this vulnerability.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| codeigniter | itp | package |
EPSS
Процентиль: 61%
0.00413
Низкий
Связанные уязвимости
CVSS3: 9.4
nvd
почти 4 года назад
CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web framework. Prior to version 4.1.9, an improper input validation vulnerability allows attackers to execute CLI routes via HTTP request. Version 4.1.9 contains a patch. There are currently no known workarounds for this vulnerability.
CVSS3: 9.4
github
почти 4 года назад
Remote CLI Command Execution Vulnerability in CodeIgniter4
EPSS
Процентиль: 61%
0.00413
Низкий