Описание
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 through 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:glpi-project:glpi:0.78:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.78.1:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.78.2:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.78.3:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.78.4:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.78.5:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.1:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.2:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.3:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.4:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.5:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.6:*:*:*:*:*:*:*
cpe:2.3:a:glpi-project:glpi:0.80.61:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00607
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
ubuntu
больше 13 лет назад
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 through 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
debian
больше 13 лет назад
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.7 ...
github
больше 3 лет назад
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 through 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
EPSS
Процентиль: 69%
0.00607
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-94