exploitDog

GHSA-9rpc-7358-gg7j

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

search.cfm in CONTENS 3.0 and earlier allows remote attackers to obtain the full server path via invalid (1) submit.y, (2) bool, (3) itemsperpage, (4) submit, (5) submit.x, (6) criteria, (7) advanced, and (8) intern parameters.

search.cfm in CONTENS 3.0 and earlier allows remote attackers to obtain the full server path via invalid (1) submit.y, (2) bool, (3) itemsperpage, (4) submit, (5) submit.x, (6) criteria, (7) advanced, and (8) intern parameters.

Ссылки

EPSS

Процентиль: 65%

0.00483

Низкий

CVE ID

Связанные уязвимости

CVE-2005-4389

nvd

около 20 лет назад

search.cfm in CONTENS 3.0 and earlier allows remote attackers to obtain the full server path via invalid (1) submit.y, (2) bool, (3) itemsperpage, (4) submit, (5) submit.x, (6) criteria, (7) advanced, and (8) intern parameters.

EPSS

Процентиль: 65%

0.00483

Низкий

CVE ID