exploitDog

GHSA-23cg-4fwx-fhrv

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app\attachment\admin\index.php, which allows attackers to access sensitive information.

Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app\attachment\admin\index.php, which allows attackers to access sensitive information.

Ссылки

EPSS

Процентиль: 53%

0.00297

Низкий

CVE ID

Дефекты

CWE-668

Связанные уязвимости

CVE-2020-28145

CVSS3: 7.5

nvd

почти 4 года назад

Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app\attachment\admin\index.php, which allows attackers to access sensitive information.

EPSS

Процентиль: 53%

0.00297

Низкий

CVE ID

Дефекты

CWE-668