exploitDog

GHSA-3q59-h5wv-vgcg

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

XML injection vulnerability exists in the file of DedeCMS V5.7 SP2 version, which can be utilized by attackers to create script file to obtain webshell

XML injection vulnerability exists in the file of DedeCMS V5.7 SP2 version, which can be utilized by attackers to create script file to obtain webshell

Ссылки

EPSS

Процентиль: 71%

0.00676

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-91

Связанные уязвимости

CVE-2018-16785

CVSS3: 8.8

nvd

больше 7 лет назад

XML injection vulnerability exists in the file of DedeCMS V5.7 SP2 version, which can be utilized by attackers to create script file to obtain webshell

EPSS

Процентиль: 71%

0.00676

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-91