exploitDog

GHSA-pgvx-9xhm-x4w5

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in includes/file_manager/special.php in MaxCMS 3.11.20b allows remote attackers to execute arbitrary PHP code via a URL in the fm_includes_special parameter.

PHP remote file inclusion vulnerability in includes/file_manager/special.php in MaxCMS 3.11.20b allows remote attackers to execute arbitrary PHP code via a URL in the fm_includes_special parameter.

Ссылки

EPSS

Процентиль: 84%

0.02168

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2009-3426

nvd

больше 16 лет назад

PHP remote file inclusion vulnerability in includes/file_manager/special.php in MaxCMS 3.11.20b allows remote attackers to execute arbitrary PHP code via a URL in the fm_includes_special parameter.

EPSS

Процентиль: 84%

0.02168

Низкий

CVE ID

Дефекты

CWE-94