Описание
Etomite Content Management System 0.6, and possibly earlier versions, when downloaded from the web site in January 2006 after January 10, contains a back door in manager/includes/todo.inc.php, which allows remote attackers to execute arbitrary commands via the "cij" parameter.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.6 (включая)
cpe:2.3:a:etomite:etomite:*:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02595
Низкий
7.5 High
CVSS2
Дефекты
CWE-78
Связанные уязвимости
github
почти 4 года назад
Etomite Content Management System 0.6, and possibly earlier versions, when downloaded from the web site in January 2006 after January 10, contains a back door in manager/includes/todo.inc.php, which allows remote attackers to execute arbitrary commands via the "cij" parameter.
EPSS
Процентиль: 85%
0.02595
Низкий
7.5 High
CVSS2
Дефекты
CWE-78