exploitDog

GHSA-p5p6-3j26-j8rh

Опубликовано: 03 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file.

An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file.

Ссылки

EPSS

Процентиль: 88%

0.03885

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2024-31012

CVSS3: 9.8

nvd

почти 2 года назад

An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file.

EPSS

Процентиль: 88%

0.03885

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434