exploitDog

GHSA-3q3m-3ccv-7882

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via the cutepath parameter to (1) show_archives.php or (2) show_news.php.

PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via the cutepath parameter to (1) show_archives.php or (2) show_news.php.

Ссылки

EPSS

Процентиль: 75%

0.00888

Низкий

CVE ID

Связанные уязвимости

CVE-2004-1660

nvd

больше 21 года назад

PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via the cutepath parameter to (1) show_archives.php or (2) show_news.php.

EPSS

Процентиль: 75%

0.00888

Низкий

CVE ID