exploitDog

CVE-2015-6008

Опубликовано: 28 сент. 2015

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

install.php in Web Reference Database (aka refbase) through 0.9.6 allows remote attackers to execute arbitrary commands via the adminPassword parameter, a different issue than CVE-2015-7381.

Ссылки

http://www.kb.cert.org/vuls/id/374092
Third Party Advisory
US Government Resource
https://www.exploit-db.com/exploits/38292/
http://www.kb.cert.org/vuls/id/374092
Third Party Advisory
US Government Resource
https://www.exploit-db.com/exploits/38292/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:refbase:refbase:*:*:*:*:*:*:*:*

Версия до 0.9.6 (включая)

EPSS

Процентиль: 90%

0.05706

Низкий

7.5 High

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-j3xj-ch76-7557

github

больше 3 лет назад

install.php in Web Reference Database (aka refbase) through 0.9.6 allows remote attackers to execute arbitrary commands via the adminPassword parameter, a different issue than CVE-2015-7381.

EPSS

Процентиль: 90%

0.05706

Низкий

7.5 High

CVSS2

Дефекты

CWE-78