exploitDog

GHSA-rf9h-7q34-q897

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in language.inc.php in MyAlbum 3.02 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the langs_dir parameter.

PHP remote file inclusion vulnerability in language.inc.php in MyAlbum 3.02 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the langs_dir parameter.

Ссылки

EPSS

Процентиль: 92%

0.0905

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2006-5865

nvd

около 19 лет назад

PHP remote file inclusion vulnerability in language.inc.php in MyAlbum 3.02 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the langs_dir parameter.

EPSS

Процентиль: 92%

0.0905

Низкий

CVE ID

Дефекты

CWE-94