exploitDog

GHSA-635w-qqhj-gvhx

Опубликовано: 31 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path traversal, likely leading to remote code execution via modification of shell scripts on the server.

Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path traversal, likely leading to remote code execution via modification of shell scripts on the server.

Ссылки

EPSS

Процентиль: 83%

0.01878

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2024-39332

CVSS3: 9.8

nvd

больше 1 года назад

Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path traversal, likely leading to remote code execution via modification of shell scripts on the server.

EPSS

Процентиль: 83%

0.01878

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22