Описание
PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 allows remote attackers to execute arbitrary PHP code via a URL in the editor_insert_top parameter. NOTE: the editor_insert_bottom vector is already covered by CVE-2006-6042.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpwebthings:phpwebthings:1.5.2:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02304
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 allows remote attackers to execute arbitrary PHP code via a URL in the editor_insert_top parameter. NOTE: the editor_insert_bottom vector is already covered by CVE-2006-6042.
EPSS
Процентиль: 84%
0.02304
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other