exploitDog

GHSA-crw3-wx37-wqr9

Опубликовано: 16 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

CuppaCMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the saveConfigData function in /classes/ajax/Functions.php.

CuppaCMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the saveConfigData function in /classes/ajax/Functions.php.

Ссылки

EPSS

Процентиль: 93%

0.11521

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2022-25498

CVSS3: 9.8

nvd

почти 4 года назад

CuppaCMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the saveConfigData function in /classes/ajax/Functions.php.

EPSS

Процентиль: 93%

0.11521

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-20