exploitDog

GHSA-gmf4-rxmx-v3cp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.

JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.

Ссылки

EPSS

Процентиль: 62%

0.00423

Низкий

CVE ID

Связанные уязвимости

CVE-2015-7339

CVSS3: 8.8

nvd

почти 6 лет назад

JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.

EPSS

Процентиль: 62%

0.00423

Низкий

CVE ID