exploitDog

GHSA-xc7v-jvj9-p5fm

Опубликовано: 07 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.

A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.

Ссылки

EPSS

Процентиль: 86%

0.02715

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-26607

CVSS3: 7.2

nvd

почти 4 года назад

A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.

EPSS

Процентиль: 86%

0.02715

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-434