exploitDog

GHSA-65wg-c4j5-gmx8

Опубликовано: 26 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary commands via crafted GET request.

Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary commands via crafted GET request.

Ссылки

EPSS

Процентиль: 98%

0.53692

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2023-30261

CVSS3: 9.8

nvd

больше 2 лет назад

Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary commands via crafted GET request.

EPSS

Процентиль: 98%

0.53692

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78