exploitDog

CVE-2017-17776

Опубликовано: 20 дек. 2017

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter.

Ссылки

https://github.com/d4wner/Vulnerabilities-Report/blob/master/paid-to-read-script.md
Exploit
Third Party Advisory
https://github.com/d4wner/Vulnerabilities-Report/blob/master/paid-to-read-script.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:paid_to_read_script_project:paid_to_read_script:2.0.5:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.00232

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-97wp-7mhg-hwh4

CVSS3: 5.3

github

больше 3 лет назад

Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter.

EPSS

Процентиль: 46%

0.00232

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200