Описание
PHP remote file inclusion vulnerability in common.php in Phorum 3.2.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the db_file parameter. NOTE: CVE disputes this vulnerability because db_file is defined before use
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phorum:phorum:3.2.11:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05419
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
** DISPUTED ** PHP remote file inclusion vulnerability in common.php in Phorum 3.2.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the db_file parameter. NOTE: CVE disputes this vulnerability because db_file is defined before use.
EPSS
Процентиль: 90%
0.05419
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other