exploitDog

GHSA-cvvg-4vj4-874r

Опубликовано: 13 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote attacker to execute arbitrary code via the dbToApi() and eval() in the FunctionField.php

An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote attacker to execute arbitrary code via the dbToApi() and eval() in the FunctionField.php

Ссылки

EPSS

Процентиль: 65%

0.00485

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2025-63406

CVSS3: 8.8

nvd

3 месяца назад

An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote attacker to execute arbitrary code via the dbToApi() and eval() in the FunctionField.php

EPSS

Процентиль: 65%

0.00485

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-77