Описание
PHP remote file inclusion vulnerability in extras/poll/poll.php in Florian Amrhein NewsPortal before 0.37, and TR Newsportal (TRanx rebuilded), allows remote attackers to execute arbitrary PHP code via a URL in the file_newsportal parameter.
Ссылки
- Patch
- Patch
- Patch
- Vendor Advisory
- PatchVendor Advisory
- Exploit
- Patch
- Patch
- Patch
- Vendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:florian_amrhein:newsportal:0.36:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.13679
Средний
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
PHP remote file inclusion vulnerability in extras/poll/poll.php in Florian Amrhein NewsPortal before 0.37, and TR Newsportal (TRanx rebuilded), allows remote attackers to execute arbitrary PHP code via a URL in the file_newsportal parameter.
EPSS
Процентиль: 94%
0.13679
Средний
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other