exploitDog

GHSA-xq9h-8fc9-wr6w

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.

Ссылки

EPSS

Процентиль: 90%

0.05981

Низкий

CVE ID

Связанные уязвимости

CVE-2008-0148

ubuntu

почти 18 лет назад

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.

CVE-2008-0148

nvd

почти 18 лет назад

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.

CVE-2008-0148

debian

почти 18 лет назад

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows ...

EPSS

Процентиль: 90%

0.05981

Низкий

CVE ID