exploitDog

GHSA-89gg-4h57-569g

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.

Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.

Ссылки

EPSS

Процентиль: 95%

0.21003

Средний

CVE ID

Связанные уязвимости

CVE-2011-3833

nvd

около 14 лет назад

Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.

EPSS

Процентиль: 95%

0.21003

Средний

CVE ID