exploitDog

GHSA-4mvj-gpp4-j2gg

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Ubilling version <= 0.9.2 contains a Other/Unknown vulnerability in user-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.

Ubilling version <= 0.9.2 contains a Other/Unknown vulnerability in user-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.

Ссылки

EPSS

Процентиль: 83%

0.02042

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2018-1000827

Дефекты

CWE-502

Связанные уязвимости

CVE-2018-1000827

CVSS3: 9.8

nvd

около 7 лет назад

Ubilling version <= 0.9.2 contains a Other/Unknown vulnerability in user-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.

EPSS

Процентиль: 83%

0.02042

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2018-1000827

Дефекты

CWE-502