exploitDog

GHSA-8xph-wx7m-xv5h

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and earlier allows remote attackers to execute arbitrary PHP code via the objectname parameter.

Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and earlier allows remote attackers to execute arbitrary PHP code via the objectname parameter.

Ссылки

EPSS

Процентиль: 91%

0.06095

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2008-5963

nvd

около 17 лет назад

Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and earlier allows remote attackers to execute arbitrary PHP code via the objectname parameter.

EPSS

Процентиль: 91%

0.06095

Низкий

CVE ID

Дефекты

CWE-20