exploitDog

GHSA-hmq9-9pc4-w9p8

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

index.php in Softaculous Webuzo before 2.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in a SOFTCookies sid cookie within a login action.

index.php in Softaculous Webuzo before 2.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in a SOFTCookies sid cookie within a login action.

Ссылки

EPSS

Процентиль: 93%

0.0969

Низкий

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2013-6041

nvd

около 11 лет назад

index.php in Softaculous Webuzo before 2.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in a SOFTCookies sid cookie within a login action.

EPSS

Процентиль: 93%

0.0969

Низкий

CVE ID

Дефекты

CWE-78