exploitDog

GHSA-7245-x6gq-6qg5

Опубликовано: 08 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue was discovered in CandyCMS version 1.0.0, allows remote attackers to execute arbitrary code via the install.php component.

An issue was discovered in CandyCMS version 1.0.0, allows remote attackers to execute arbitrary code via the install.php component.

Ссылки

EPSS

Процентиль: 82%

0.01668

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2024-31022

CVSS3: 9.8

nvd

почти 2 года назад

An issue was discovered in CandyCMS version 1.0.0, allows remote attackers to execute arbitrary code via the install.php component.

EPSS

Процентиль: 82%

0.01668

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94