exploitDog

GHSA-pq2w-cvxp-cmjg

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue was discovered in the add function in Shenzhim AAPTJS 1.3.1 which allows attackers to execute arbitrary code via the filePath parameter.

An issue was discovered in the add function in Shenzhim AAPTJS 1.3.1 which allows attackers to execute arbitrary code via the filePath parameter.

Ссылки

EPSS

Процентиль: 78%

0.01119

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-77

CWE-78

Связанные уязвимости

CVE-2020-26707

CVSS3: 9.8

nvd

больше 4 лет назад

An issue was discovered in the add function in Shenzhim AAPTJS 1.3.1 which allows attackers to execute arbitrary code via the filePath parameter.

EPSS

Процентиль: 78%

0.01119

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-77

CWE-78