Описание
include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information including FTP login credentials, which might allow remote attackers to gain unauthorized access to the FTP server being used by the module by viewing the source code.
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:javaatwork:myftpuploader_module:*:*:*:*:*:*:*:*
cpe:2.3:a:scottmanktelow:stride:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00343
Низкий
7.8 High
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information including FTP login credentials, which might allow remote attackers to gain unauthorized access to the FTP server being used by the module by viewing the source code.
EPSS
Процентиль: 56%
0.00343
Низкий
7.8 High
CVSS2
Дефекты
CWE-200