CVE-2017-20099

Опубликовано: 27 июн. 2022

Источник: nvd

CVSS3: 7.3

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

A vulnerability was found in Analytics Stats Counter Statistics Plugin 1.2.2.5 and classified as critical. This issue affects some unknown processing. The manipulation leads to code injection. The attack may be initiated remotely.

Ссылки

http://seclists.org/fulldisclosure/2017/Feb/74
Exploit
Mailing List
Third Party Advisory
https://vuldb.com/?id.97367
Third Party Advisory
http://seclists.org/fulldisclosure/2017/Feb/74
Exploit
Mailing List
Third Party Advisory
https://vuldb.com/?id.97367
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:analytics_stats_counter_statistics_project:analytics_stats_counter_statistics:1.2.2.5:*:*:*:*:wordpress:*:*

EPSS

Процентиль: 65%

0.00489

Низкий

7.3 High

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-36vr-cpp3-vrwf

CVSS3: 9.8

github

больше 3 лет назад

EPSS

Процентиль: 65%

0.00489

Низкий

7.3 High

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-94