Описание
PHP remote file inclusion vulnerability in template/album.php in DM Albums 1.9.2, as used standalone or as a WordPress plugin, allows remote attackers to execute arbitrary PHP code via a URL in the SECURITY_FILE parameter.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
cpe:2.3:a:dutchmonkey:dm_album:1.9.2:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:dutchmonkey:dm_album:1.9.2:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01329
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
около 3 лет назад
PHP remote file inclusion vulnerability in template/album.php in DM Albums 1.9.2, as used standalone or as a WordPress plugin, allows remote attackers to execute arbitrary PHP code via a URL in the SECURITY_FILE parameter.
EPSS
Процентиль: 79%
0.01329
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-94