Описание
PHP remote file inclusion vulnerability in template/album.php in DM Albums 1.9.2, as used standalone or as a WordPress plugin, allows remote attackers to execute arbitrary PHP code via a URL in the SECURITY_FILE parameter.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
cpe:2.3:a:dutchmonkey:dm_album:1.9.2:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:dutchmonkey:dm_album:1.9.2:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.03668
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
почти 4 года назад
PHP remote file inclusion vulnerability in template/album.php in DM Albums 1.9.2, as used standalone or as a WordPress plugin, allows remote attackers to execute arbitrary PHP code via a URL in the SECURITY_FILE parameter.
EPSS
Процентиль: 88%
0.03668
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-94