exploitDog

GHSA-q96m-39gx-6fp6

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in login/engine/db/profiledit.php in Advanced Login 0.76 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.

PHP remote file inclusion vulnerability in login/engine/db/profiledit.php in Advanced Login 0.76 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.

Ссылки

EPSS

Процентиль: 91%

0.0738

Низкий

CVE ID

Связанные уязвимости

CVE-2007-1766

nvd

почти 19 лет назад

PHP remote file inclusion vulnerability in login/engine/db/profiledit.php in Advanced Login 0.76 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root parameter.

EPSS

Процентиль: 91%

0.0738

Низкий

CVE ID