exploitDog

GHSA-5wj3-8v9f-vjph

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into an eval statement.

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into an eval statement.

Ссылки

EPSS

Процентиль: 91%

0.06211

Низкий

CVE ID

Связанные уязвимости

CVE-2005-0887

nvd

больше 20 лет назад

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into an eval statement.

CVE-2005-0887

debian

больше 20 лет назад

Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allo ...

EPSS

Процентиль: 91%

0.06211

Низкий

CVE ID