exploitDog

GHSA-x48h-jvv3-m642

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the include_path variable, which is not initialized before being used.

PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the include_path variable, which is not initialized before being used.

Ссылки

EPSS

Процентиль: 83%

0.01921

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2006-0854

nvd

почти 20 лет назад

PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the include_path variable, which is not initialized before being used.

EPSS

Процентиль: 83%

0.01921

Низкий

CVE ID

Дефекты

CWE-94