exploitDog

GHSA-ccvg-rxc2-rf77

Опубликовано: 26 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The Cab fare calculator WordPress plugin through 1.0.3 does not validate the controller parameter before using it in require statements, which could lead to Local File Inclusion issues.

The Cab fare calculator WordPress plugin through 1.0.3 does not validate the controller parameter before using it in require statements, which could lead to Local File Inclusion issues.

Ссылки

EPSS

Процентиль: 98%

0.66822

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2022-1391

CVSS3: 9.8

nvd

почти 4 года назад

The Cab fare calculator WordPress plugin before 1.0.4 does not validate the controller parameter before using it in require statements, which could lead to Local File Inclusion issues.

EPSS

Процентиль: 98%

0.66822

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22