exploitDog

GHSA-7ffc-hwfp-9xhq

Опубликовано: 04 дек. 2021

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

** UNSUPPORTED WHEN ASSIGNED ** ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php.

** UNSUPPORTED WHEN ASSIGNED ** ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php.

Ссылки

EPSS

Процентиль: 63%

0.00457

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22

CWE-668

Связанные уязвимости

CVE-2021-43674

CVSS3: 9.8

nvd

около 4 лет назад

ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer

EPSS

Процентиль: 63%

0.00457

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22

CWE-668