Описание
Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.3.02 (включая)
Одно из
cpe:2.3:a:redgraphic:sapid_cms:*:*:*:*:*:*:*:*
cpe:2.3:a:redgraphic:sapid_cms:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:redgraphic:sapid_cms:1.2.3:rc2:*:*:*:*:*:*
cpe:2.3:a:redgraphic:sapid_cms:1.2.3:rc3:*:*:*:*:*:*
cpe:2.3:a:redgraphic:sapid_cms:1.2.3:rc5:*:*:*:*:*:*
cpe:2.3:a:redgraphic:sapid_cms:1.2.3:stable:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00389
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
почти 4 года назад
Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
EPSS
Процентиль: 59%
0.00389
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-noinfo