exploitDog

GHSA-gpgp-qc76-jrxr

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

** DISPUTED ** PHP remote file inclusion vulnerability in the Enigma2 plugin (Enigma2.php) in Enigma WordPress Bridge allows remote attackers to execute arbitrary PHP code via a URL in the boarddir parameter. NOTE: CVE disputes this issue, since $boarddir is set to a fixed value.

** DISPUTED ** PHP remote file inclusion vulnerability in the Enigma2 plugin (Enigma2.php) in Enigma WordPress Bridge allows remote attackers to execute arbitrary PHP code via a URL in the boarddir parameter. NOTE: CVE disputes this issue, since $boarddir is set to a fixed value.

Ссылки

EPSS

Процентиль: 90%

0.05559

Низкий

9.8 Critical

CVSS3

CVE ID

Связанные уязвимости

CVE-2006-6863

CVSS3: 9.8

nvd

около 19 лет назад

PHP remote file inclusion vulnerability in the Enigma2 plugin (Enigma2.php) in Enigma WordPress Bridge allows remote attackers to execute arbitrary PHP code via a URL in the boarddir parameter. NOTE: CVE disputes this issue, since $boarddir is set to a fixed value

EPSS

Процентиль: 90%

0.05559

Низкий

9.8 Critical

CVSS3

CVE ID