exploitDog

CVE-2014-9001

Опубликовано: 20 нояб. 2014

Источник: nvd

CVSS2: 6.5

EPSS Низкий

Описание

reminders/index.php in Incredible PBX 11 2.0.6.5.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) APPTMIN, (2) APPTHR, (3) APPTDA, (4) APPTMO, (5) APPTYR, or (6) APPTPHONE parameters.

Ссылки

http://seclists.org/fulldisclosure/2014/Oct/101
Exploit
http://seclists.org/fulldisclosure/2014/Oct/101
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:incrediblepbx:incredible_pbx_11:2.0.6.5.0:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.07051

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-jggh-fp4x-pw2h

github

больше 3 лет назад

reminders/index.php in Incredible PBX 11 2.0.6.5.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) APPTMIN, (2) APPTHR, (3) APPTDA, (4) APPTMO, (5) APPTYR, or (6) APPTPHONE parameters.

EPSS

Процентиль: 91%

0.07051

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-94