Описание
uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:abweb:minimal-ablog:0.4:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.02006
Низкий
7.5 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request.
EPSS
Процентиль: 83%
0.02006
Низкий
7.5 High
CVSS2
Дефекты
CWE-264