exploitDog

GHSA-4p4p-37mm-wwx8

Опубликовано: 05 апр. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file.

An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file.

Ссылки

EPSS

Процентиль: 36%

0.00153

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2023-24720

CVSS3: 9.8

nvd

почти 3 года назад

An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file.

EPSS

Процентиль: 36%

0.00153

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434