Описание
Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .php.jpg, which creates an accessible file under img_original/.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:detodas:restaurante_component_for_joomla:*:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06927
Низкий
7.5 High
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .php.jpg, which creates an accessible file under img_original/.
EPSS
Процентиль: 91%
0.06927
Низкий
7.5 High
CVSS2
Дефекты
CWE-94