exploitDog

GHSA-hhgm-j3w3-6p82

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CLASSES_ROOT parameter.

PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CLASSES_ROOT parameter.

Ссылки

EPSS

Процентиль: 86%

0.02932

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2008-2885

nvd

больше 17 лет назад

PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CLASSES_ROOT parameter.

EPSS

Процентиль: 86%

0.02932

Низкий

CVE ID

Дефекты

CWE-94