Описание
PHP remote file inclusion vulnerability in index.php in phpWebFileManager 0.5 allows remote attackers to execute arbitrary PHP code via a URL in the PN_PathPrefix parameter. NOTE: this issue is disputed by a reliable third party, who demonstrates that PN_PathPrefix is defined before use
Комментарий
Further information regarding this vulnerability can be found at: http://xforce.iss.net/xforce/xfdb/35690
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:platon:phpwebfilemanager:0.5:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00676
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
** DISPUTED ** PHP remote file inclusion vulnerability in index.php in phpWebFileManager 0.5 allows remote attackers to execute arbitrary PHP code via a URL in the PN_PathPrefix parameter. NOTE: this issue is disputed by a reliable third party, who demonstrates that PN_PathPrefix is defined before use.
EPSS
Процентиль: 71%
0.00676
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other