exploitDog

GHSA-pg8p-hrhx-f5vw

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.

October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.

Ссылки

EPSS

Процентиль: 61%

0.00411

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2017-1000197

Связанные уязвимости

CVE-2017-1000197

CVSS3: 9.8

nvd

около 8 лет назад

October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.

EPSS

Процентиль: 61%

0.00411

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2017-1000197