exploitDog

GHSA-pqxg-66p9-rr3w

Опубликовано: 05 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Cuppa CMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the email_outgoing parameter at /Configuration.php. This vulnerability is triggered via a crafted payload.

Cuppa CMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the email_outgoing parameter at /Configuration.php. This vulnerability is triggered via a crafted payload.

Ссылки

EPSS

Процентиль: 89%

0.04417

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2023-39681

CVSS3: 9.8

nvd

больше 2 лет назад

Cuppa CMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the email_outgoing parameter at /Configuration.php. This vulnerability is triggered via a crafted payload.

EPSS

Процентиль: 89%

0.04417

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94