exploitDog

GHSA-5jgm-qr8m-qj44

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue in craigms/main.php of CraigMS 1.0 allows attackers to execute arbitrary commands via a crafted input entered into the DB Name field.

An issue in craigms/main.php of CraigMS 1.0 allows attackers to execute arbitrary commands via a crafted input entered into the DB Name field.

Ссылки

EPSS

Процентиль: 83%

0.01821

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2020-18048

CVSS3: 9.8

nvd

больше 4 лет назад

An issue in craigms/main.php of CraigMS 1.0 allows attackers to execute arbitrary commands via a crafted input entered into the DB Name field.

EPSS

Процентиль: 83%

0.01821

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-77