exploitDog

GHSA-mx48-cppf-pvxc

Опубликовано: 07 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Typecho v1.2.1 was discovered to be vulnerable to an XML Quadratic Blowup attack via the component /index.php/action/xmlrpc.

Typecho v1.2.1 was discovered to be vulnerable to an XML Quadratic Blowup attack via the component /index.php/action/xmlrpc.

Ссылки

EPSS

Процентиль: 54%

0.0031

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-776

Связанные уязвимости

CVE-2023-49967

CVSS3: 7.5

nvd

около 2 лет назад

Typecho v1.2.1 was discovered to be vulnerable to an XML Quadratic Blowup attack via the component /index.php/action/xmlrpc.

EPSS

Процентиль: 54%

0.0031

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-776