exploitDog

CVE-2019-16532

Опубликовано: 26 сент. 2019

Источник: nvd

CVSS3: 6.1

CVSS2: 5.8

EPSS Низкий

Описание

An HTTP Host header injection vulnerability exists in YzmCMS V5.3. A malicious user can poison a web cache or trigger redirections.

Ссылки

https://github.com/yzmcms/yzmcms/issues/28
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/47422
Exploit
Third Party Advisory
VDB Entry
https://github.com/yzmcms/yzmcms/issues/28
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/47422
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yzmcms:yzmcms:5.3:*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00471

Низкий

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-74

Связанные уязвимости

GHSA-xv6f-92rh-2qr6

CVSS3: 6.1

github

почти 4 года назад

An HTTP Host header injection vulnerability exists in YzmCMS V5.3. A malicious user can poison a web cache or trigger redirections.

EPSS

Процентиль: 65%

0.00471

Низкий

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-74