exploitDog

GHSA-pm74-5m4v-fxfg

Опубликовано: 17 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Permissions vulnerability in LIZHIFAKA v.2.2.0 allows authenticated attacker to execute arbitrary commands via the set password function in the admin/index/email location.

Permissions vulnerability in LIZHIFAKA v.2.2.0 allows authenticated attacker to execute arbitrary commands via the set password function in the admin/index/email location.

Ссылки

EPSS

Процентиль: 28%

0.00101

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-276

Связанные уязвимости

CVE-2021-34164

CVSS3: 8.8

nvd

почти 3 года назад

Permissions vulnerability in LIZHIFAKA v.2.2.0 allows authenticated attacker to execute arbitrary commands via the set password function in the admin/index/email location.

EPSS

Процентиль: 28%

0.00101

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-276