Описание
PHP remote file inclusion vulnerability in nukebrowser.php in Nukebrowser 2.1 to 2.5 allows remote attackers to execute arbitrary PHP code via the filhead parameter.
Ссылки
- Vendor Advisory
- Patch
- Exploit
- Vendor Advisory
- Patch
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:crossnuke:nukebrowser:2.1:*:*:*:*:*:*:*
cpe:2.3:a:crossnuke:nukebrowser:2.3:*:*:*:*:*:*:*
cpe:2.3:a:crossnuke:nukebrowser:2.5:*:*:*:*:*:*:*
cpe:2.3:a:crossnuke:nukebrowser:2.11:*:*:*:*:*:*:*
cpe:2.3:a:crossnuke:nukebrowser:2.20:*:*:*:*:*:*:*
cpe:2.3:a:crossnuke:nukebrowser:2.41:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01022
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
PHP remote file inclusion vulnerability in nukebrowser.php in Nukebrowser 2.1 to 2.5 allows remote attackers to execute arbitrary PHP code via the filhead parameter.
EPSS
Процентиль: 77%
0.01022
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94