exploitDog

GHSA-xqrc-68p6-rf7p

Опубликовано: 22 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Directory Traversal vulnerability in Sitecore Experience Platform through 10.2 allows remote attackers to download arbitrary files via crafted command to download.aspx

Directory Traversal vulnerability in Sitecore Experience Platform through 10.2 allows remote attackers to download arbitrary files via crafted command to download.aspx

Ссылки

EPSS

Процентиль: 64%

0.00458

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2023-27067

CVSS3: 7.5

nvd

больше 2 лет назад

Directory Traversal vulnerability in Sitecore Experience Platform through 10.2 allows remote attackers to download arbitrary files via crafted command to download.aspx

EPSS

Процентиль: 64%

0.00458

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22