Описание
Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:deltascripts:pro_publish:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.0042
Низкий
5.5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php.
EPSS
Процентиль: 61%
0.0042
Низкий
5.5 Medium
CVSS2
Дефекты
NVD-CWE-Other