exploitDog

GHSA-2j5q-ph68-3hp6

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Incomplete blacklist vulnerability in SuiteCRM 7.2.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

Incomplete blacklist vulnerability in SuiteCRM 7.2.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

Ссылки

EPSS

Процентиль: 58%

0.00363

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-184

Связанные уязвимости

CVE-2015-5946

CVSS3: 7.8

nvd

больше 8 лет назад

Incomplete blacklist vulnerability in SuiteCRM 7.2.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

EPSS

Процентиль: 58%

0.00363

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-184