Описание
Cross-site request forgery (CSRF) vulnerability in the Email-Template module in Generic YouTube Clone Script allows remote attackers to upload files with arbitrary file types to templates/emails/ as administrators.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:generic_youtube_clone_script:generic_youtube_clone_script:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00733
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
Cross-site request forgery (CSRF) vulnerability in the Email-Template module in Generic YouTube Clone Script allows remote attackers to upload files with arbitrary file types to templates/emails/ as administrators.
EPSS
Процентиль: 72%
0.00733
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-94