Описание
admin/index.php in Evilsentinel 1.0.9 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to gain administrative privileges and make arbitrary configuration changes.
Ссылки
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.9 (включая)
cpe:2.3:a:evilsentinel:evilsentinel:*:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04882
Низкий
7.5 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
admin/index.php in Evilsentinel 1.0.9 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to gain administrative privileges and make arbitrary configuration changes.
EPSS
Процентиль: 89%
0.04882
Низкий
7.5 High
CVSS2
Дефекты
CWE-264