exploitDog

GHSA-3rfr-67g3-3ffq

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple PHP remote file inclusion vulnerabilities in x10Media x10 Automatic MP3 Script 1.5.5 allow remote attackers to execute arbitrary PHP code via a URL in the web_root parameter to (1) includes/function_core.php and (2) templates/layout_lyrics.php.

Multiple PHP remote file inclusion vulnerabilities in x10Media x10 Automatic MP3 Script 1.5.5 allow remote attackers to execute arbitrary PHP code via a URL in the web_root parameter to (1) includes/function_core.php and (2) templates/layout_lyrics.php.

Ссылки

EPSS

Процентиль: 92%

0.07602

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2008-4141

nvd

больше 17 лет назад

Multiple PHP remote file inclusion vulnerabilities in x10Media x10 Automatic MP3 Script 1.5.5 allow remote attackers to execute arbitrary PHP code via a URL in the web_root parameter to (1) includes/function_core.php and (2) templates/layout_lyrics.php.

EPSS

Процентиль: 92%

0.07602

Низкий

CVE ID

Дефекты

CWE-94