exploitDog

GHSA-p9vm-qp96-wp3x

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users.

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users.

Ссылки

EPSS

Процентиль: 55%

0.00327

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2017-12586

CVSS3: 6.5

nvd

больше 8 лет назад

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users.

EPSS

Процентиль: 55%

0.00327

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-22