CVE-2023-36220

Опубликовано: 07 авг. 2023

Источник: debian

Описание

Directory Traversal vulnerability in Textpattern CMS v4.8.8 allows a remote authenticated attacker to execute arbitrary code and gain access to sensitive information via the plugin Upload function.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
textpattern	removed			package

Связанные уязвимости

CVE-2023-36220

CVSS3: 7.2

nvd

больше 2 лет назад

Directory Traversal vulnerability in Textpattern CMS v4.8.8 allows a remote authenticated attacker to execute arbitrary code and gain access to sensitive information via the plugin Upload function.

GHSA-xcvw-5f44-wf2r

CVSS3: 7.2

github

больше 2 лет назад

Directory Traversal vulnerability in Textpattern CMS v4.8.8 allows a remote authenticated attacker to execute arbitrary code and gain access to sensitive information via the plugin Upload function.