exploitDog

GHSA-4r4v-f3wv-mqw2

Опубликовано: 06 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can execute OS commands in cyrus.events.php with GET param logs and POST param rp.

A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can execute OS commands in cyrus.events.php with GET param logs and POST param rp.

Ссылки

EPSS

Процентиль: 91%

0.06738

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2021-41739

CVSS3: 9.8

nvd

почти 4 года назад

A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can execute OS commands in cyrus.events.php with GET param logs and POST param rp.

EPSS

Процентиль: 91%

0.06738

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78