exploitDog

GHSA-r4h3-6fjh-vf6v

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in modules/cms/index.php in Mcms Easy Web Make 1.3, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.

Directory traversal vulnerability in modules/cms/index.php in Mcms Easy Web Make 1.3, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.

Ссылки

EPSS

Процентиль: 94%

0.12273

Средний

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2007-6344

nvd

около 18 лет назад

Directory traversal vulnerability in modules/cms/index.php in Mcms Easy Web Make 1.3, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.

EPSS

Процентиль: 94%

0.12273

Средний

CVE ID

Дефекты

CWE-22