exploitDog

CVE-2020-23790

Опубликовано: 12 мая 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

An Arbitrary File Upload vulnerability was discovered in the Golo Laravel theme v 1.1.5.

Ссылки

https://codecanyon.net/item/golo-city-guide-laravel-theme/25785389
Product
https://github.com/vladvector/vladvector.github.io/blob/master/exploit/2020-07-02-golo-business-listing-city-travel-guide-laravel-theme-v1-1-5.txt
Exploit
Third Party Advisory
https://codecanyon.net/item/golo-city-guide-laravel-theme/25785389
Product
https://github.com/vladvector/vladvector.github.io/blob/master/exploit/2020-07-02-golo-business-listing-city-travel-guide-laravel-theme-v1-1-5.txt
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:uxper:golo:1.1.5:*:*:*:*:laravel:*:*

EPSS

Процентиль: 62%

0.00433

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-w3x7-7p26-r8jv

github

больше 3 лет назад

An Arbitrary File Upload vulnerability was discovered in the Golo Laravel theme v 1.1.5.

EPSS

Процентиль: 62%

0.00433

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434