exploitDog

GHSA-pxwj-hfx2-cprp

Опубликовано: 26 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A remote code execution (RCE) vulnerability in Ionize v1.0.8.1 allows attackers to execute arbitrary code via a crafted string written to the file application/config/config.php.

A remote code execution (RCE) vulnerability in Ionize v1.0.8.1 allows attackers to execute arbitrary code via a crafted string written to the file application/config/config.php.

Ссылки

EPSS

Процентиль: 86%

0.0303

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2022-26272

CVSS3: 9.8

nvd

почти 4 года назад

A remote code execution (RCE) vulnerability in Ionize v1.0.8.1 allows attackers to execute arbitrary code via a crafted string written to the file application/config/config.php.

EPSS

Процентиль: 86%

0.0303

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94