exploitDog

GHSA-fg75-qw6g-52mj

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.

An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.

Ссылки

EPSS

Процентиль: 99%

0.80861

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2019-10945

CVSS3: 9.8

nvd

почти 7 лет назад

An issue was discovered in Joomla! before 3.9.5. The Media Manager component does not properly sanitize the folder parameter, allowing attackers to act outside the media manager root directory.

EPSS

Процентиль: 99%

0.80861

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-22