Описание
The installer in ICZ MATCHA SNS before 1.3.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.3.6 (включая)
cpe:2.3:a:icz:matchasns:*:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00602
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
больше 3 лет назад
The installer in ICZ MATCHA SNS before 1.3.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors.
EPSS
Процентиль: 69%
0.00602
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-94