Описание
Incomplete blacklist vulnerability in the checkBlacklist function in CPAINT allows remote attackers to execute arbitrary commands via the (1) ExecuteGlobal function or (2) GetRef statement, which is not included in the blacklist.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:cpaint:cpaint:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00904
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Incomplete blacklist vulnerability in the checkBlacklist function in CPAINT allows remote attackers to execute arbitrary commands via the (1) ExecuteGlobal function or (2) GetRef statement, which is not included in the blacklist.
EPSS
Процентиль: 75%
0.00904
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other