exploitDog

GHSA-w633-7vm3-q65x

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 2.7

Описание

An issue was discovered in damiCMS V6.0.1. There is Directory Traversal via '|' characters in the s parameter to admin.php, as demonstrated by an admin.php?s=Tpl/Add/id/c:|windows|win.ini URI.

An issue was discovered in damiCMS V6.0.1. There is Directory Traversal via '|' characters in the s parameter to admin.php, as demonstrated by an admin.php?s=Tpl/Add/id/c:|windows|win.ini URI.

Ссылки

EPSS

Процентиль: 49%

0.00255

Низкий

2.7 Low

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2018-16237

CVSS3: 2.7

nvd

больше 7 лет назад

An issue was discovered in damiCMS V6.0.1. There is Directory Traversal via '|' characters in the s parameter to admin.php, as demonstrated by an admin.php?s=Tpl/Add/id/c:|windows|win.ini URI.

EPSS

Процентиль: 49%

0.00255

Низкий

2.7 Low

CVSS3

CVE ID

Дефекты

CWE-22