exploitDog

CVE-2019-7535

Опубликовано: 07 фев. 2019

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

index.php in Gurock TestRail 5.3.0.3603 returns potentially sensitive information for an invalid request, as demonstrated by full path disclosure and the identification of PHP as the backend technology.

Ссылки

https://gist.github.com/nenf/2f16cd547c2afe166d1cb3f88f18bf81
Third Party Advisory
https://gist.github.com/nenf/2f16cd547c2afe166d1cb3f88f18bf81
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gurock:testrail:5.3.0.3603:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.00232

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-rxg5-5wmp-79m2

CVSS3: 5.3

github

больше 3 лет назад

index.php in Gurock TestRail 5.3.0.3603 returns potentially sensitive information for an invalid request, as demonstrated by full path disclosure and the identification of PHP as the backend technology.

EPSS

Процентиль: 46%

0.00232

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200