exploitDog

GHSA-mfr8-h382-jvv4

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page.

An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page.

Ссылки

EPSS

Процентиль: 85%

0.02415

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2020-28136

CVSS3: 8.8

nvd

около 5 лет назад

An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page.

EPSS

Процентиль: 85%

0.02415

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434