exploitDog

GHSA-4f6v-52xw-69q3

Опубликовано: 14 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.6

Описание

An arbitrary file upload vulnerability in the component /controller/PicManager.php of FoxCMS v1.2.6 allows attackers to execute arbitrary code via uploading a crafted template file.

An arbitrary file upload vulnerability in the component /controller/PicManager.php of FoxCMS v1.2.6 allows attackers to execute arbitrary code via uploading a crafted template file.

Ссылки

EPSS

Процентиль: 24%

0.00082

Низкий

5.6 Medium

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2025-51650

CVSS3: 5.6

nvd

7 месяцев назад

An arbitrary file upload vulnerability in the component /controller/PicManager.php of FoxCMS v1.2.6 allows attackers to execute arbitrary code via uploading a crafted template file.

EPSS

Процентиль: 24%

0.00082

Низкий

5.6 Medium

CVSS3

CVE ID

Дефекты

CWE-77