Описание
Multiple PHP remote file inclusion vulnerabilities in PHPauction GPL 2.51 allow remote attackers to execute arbitrary PHP code via a URL in the include_path parameter to (1) converter.inc.php, (2) messages.inc.php, and (3) settings.inc.php in includes/.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpauction:phpauction_gpl:2.51:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.11913
Средний
6.8 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
Multiple PHP remote file inclusion vulnerabilities in PHPauction GPL 2.51 allow remote attackers to execute arbitrary PHP code via a URL in the include_path parameter to (1) converter.inc.php, (2) messages.inc.php, and (3) settings.inc.php in includes/.
EPSS
Процентиль: 94%
0.11913
Средний
6.8 Medium
CVSS2
Дефекты
CWE-94