Описание
Direct static code injection vulnerability in HIOX Guest Book (HGB) 4.0 allows remote attackers to inject arbitrary PHP code via the Email field, which results in code execution through a direct request to gb.php.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:hiox_india:guest_book:4.0:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06722
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Direct static code injection vulnerability in HIOX Guest Book (HGB) 4.0 allows remote attackers to inject arbitrary PHP code via the Email field, which results in code execution through a direct request to gb.php.
EPSS
Процентиль: 91%
0.06722
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other