exploitDog

GHSA-mwj2-cvrj-h6g4

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

IncomCMS 2.0 has a modules/uploader/showcase/script.php insecure file upload vulnerability. This vulnerability allows unauthenticated attackers to upload files into the server.

IncomCMS 2.0 has a modules/uploader/showcase/script.php insecure file upload vulnerability. This vulnerability allows unauthenticated attackers to upload files into the server.

Ссылки

EPSS

Процентиль: 99%

0.85276

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2020-29597

CVSS3: 9.8

nvd

около 5 лет назад

IncomCMS 2.0 has a modules/uploader/showcase/script.php insecure file upload vulnerability. This vulnerability allows unauthenticated attackers to upload files into the server.

EPSS

Процентиль: 99%

0.85276

Высокий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434