Описание
Froxlor vulnerable to Command Injection
Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2023-0315
- https://github.com/froxlor/froxlor/commit/090cfc26f2722ac3036cc7fd1861955bc36f065a
- https://huntr.dev/bounties/ff4e177b-ba48-4913-bbfa-ab8ce0db5943
- http://packetstormsecurity.com/files/171108/Froxlor-2.0.6-Remote-Command-Execution.html
- http://packetstormsecurity.com/files/171729/Froxlor-2.0.3-Stable-Remote-Code-Execution.html
Пакеты
Наименование
froxlor/froxlor
composer
Затронутые версииВерсия исправления
< 2.0.8
2.0.8
Связанные уязвимости
CVSS3: 8.8
nvd
около 3 лет назад
Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8.
CVSS3: 8.8
debian
около 3 лет назад
Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8.