exploitDog

GHSA-6m4v-96f3-85ph

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.

Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.

Ссылки

EPSS

Процентиль: 98%

0.60567

Средний

CVE ID

Дефекты

CWE-88

Связанные уязвимости

CVE-2020-25494

CVSS3: 9.8

nvd

около 5 лет назад

Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.

EPSS

Процентиль: 98%

0.60567

Средний

CVE ID

Дефекты

CWE-88