exploitDog

GHSA-6rmc-x973-fw5x

Опубликовано: 01 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A remote code execution (RCE) vulnerability in Online Banking System Protect v1.0 allows attackers to execute arbitrary code via a crafted PHP file uploaded through the Upload Image function.

A remote code execution (RCE) vulnerability in Online Banking System Protect v1.0 allows attackers to execute arbitrary code via a crafted PHP file uploaded through the Upload Image function.

Ссылки

EPSS

Процентиль: 86%

0.02994

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-26645

CVSS3: 9.8

nvd

почти 4 года назад

A remote code execution (RCE) vulnerability in Online Banking System Protect v1.0 allows attackers to execute arbitrary code via a crafted PHP file uploaded through the Upload Image function.

EPSS

Процентиль: 86%

0.02994

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434