Описание
EZPhotoSales 1.9.3 and earlier allows remote attackers to download arbitrary image files via (1) a direct request for a URL under OnlineViewing/galleries/ or (2) navigation of the gallery user interface with JavaScript disabled.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ez_photo_sales:ez_photo_sales:1.9.3:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00583
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
EZPhotoSales 1.9.3 and earlier allows remote attackers to download arbitrary image files via (1) a direct request for a URL under OnlineViewing/galleries/ or (2) navigation of the gallery user interface with JavaScript disabled.
EPSS
Процентиль: 68%
0.00583
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other