Описание
Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote web server that contains the code.
Ссылки
- Patch
- Patch
- Exploit
- PatchVendor Advisory
- Patch
- Patch
- Exploit
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:whm:whm_autopilot:2.4.5:*:*:*:*:*:*:*
cpe:2.3:a:whm:whm_autopilot:2.4.6:*:*:*:*:*:*:*
cpe:2.3:a:whm:whm_autopilot:2.4.6.5:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06689
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote web server that contains the code.
EPSS
Процентиль: 91%
0.06689
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other