exploitDog

GHSA-4x92-5xf4-xgq7

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files via the Delete File(s) screen, as demonstrated by a ?i=var/www/html/&f=123.php&p=edit&p=deletefile URI.

onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files via the Delete File(s) screen, as demonstrated by a ?i=var/www/html/&f=123.php&p=edit&p=deletefile URI.

Ссылки

EPSS

Процентиль: 30%

0.00111

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2018-13122

CVSS3: 6.5

nvd

больше 7 лет назад

onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files via the Delete File(s) screen, as demonstrated by a ?i=var/www/html/&f=123.php&p=edit&p=deletefile URI.

EPSS

Процентиль: 30%

0.00111

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-732