exploitDog

GHSA-6pwf-hhh9-vp2c

Опубликовано: 27 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Directory Traversal vulnerability in lib/admin/image.admin.php in cmseasy v7.7.7.9 20240105 allows attackers to delete arbitrary files via crafted GET request.

Directory Traversal vulnerability in lib/admin/image.admin.php in cmseasy v7.7.7.9 20240105 allows attackers to delete arbitrary files via crafted GET request.

Ссылки

EPSS

Процентиль: 67%

0.00554

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-26

Связанные уязвимости

CVE-2024-31551

CVSS3: 7.5

nvd

почти 2 года назад

Directory Traversal vulnerability in lib/admin/image.admin.php in cmseasy v7.7.7.9 20240105 allows attackers to delete arbitrary files via crafted GET request.

EPSS

Процентиль: 67%

0.00554

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-26