exploitDog

GHSA-98cm-68r8-4m8h

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in php-inc/log.inc.php in sk.log 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SKIN_URL parameter.

PHP remote file inclusion vulnerability in php-inc/log.inc.php in sk.log 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SKIN_URL parameter.

Ссылки

EPSS

Процентиль: 94%

0.11946

Средний

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2007-5089

nvd

больше 18 лет назад

PHP remote file inclusion vulnerability in php-inc/log.inc.php in sk.log 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SKIN_URL parameter.

EPSS

Процентиль: 94%

0.11946

Средний

CVE ID

Дефекты

CWE-94