exploitDog

GHSA-44g2-wmg5-f6v6

Опубликовано: 21 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An issue in QiboSoft QiboCMS X1.0 allows a remote attacker to obtain sensitive information via the http_curl() function in the '/application/common. php' file that directly retrieves the URL request response content.

An issue in QiboSoft QiboCMS X1.0 allows a remote attacker to obtain sensitive information via the http_curl() function in the '/application/common. php' file that directly retrieves the URL request response content.

Ссылки

EPSS

Процентиль: 31%

0.00116

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2025-22973

CVSS3: 7.5

nvd

12 месяцев назад

An issue in QiboSoft QiboCMS X1.0 allows a remote attacker to obtain sensitive information via the http_curl() function in the '/application/common. php' file that directly retrieves the URL request response content.

EPSS

Процентиль: 31%

0.00116

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200