Описание
Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the addqq() method.
Ссылки
- Technical Description
- ExploitIssue TrackingThird Party Advisory
- Technical Description
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:myucms_project:myucms:2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03282
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the addqq() method.
EPSS
Процентиль: 87%
0.03282
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-94