exploitDog

GHSA-293q-vg2m-m48p

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.

SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.

Ссылки

EPSS

Процентиль: 70%

0.00643

Низкий

7.2 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2017-17561

CVSS3: 7.2

nvd

почти 8 лет назад

SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.

EPSS

Процентиль: 70%

0.00643

Низкий

7.2 High

CVSS3

CVE ID