exploitDog

GHSA-pc8h-5qfp-98rq

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

MiniCMS 1.10 allows execution of arbitrary PHP code via the install.php sitename parameter, which affects the site_name field in mc_conf.php.

MiniCMS 1.10 allows execution of arbitrary PHP code via the install.php sitename parameter, which affects the site_name field in mc_conf.php.

Ссылки

EPSS

Процентиль: 78%

0.01185

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2018-18892

CVSS3: 9.8

nvd

больше 7 лет назад

MiniCMS 1.10 allows execution of arbitrary PHP code via the install.php sitename parameter, which affects the site_name field in mc_conf.php.

EPSS

Процентиль: 78%

0.01185

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94