exploitDog

CVE-2020-28693

Опубликовано: 16 нояб. 2020

Источник: nvd

CVSS3: 8.8

CVSS2: 9

EPSS Низкий

Описание

An unrestricted file upload issue in HorizontCMS 1.0.0-beta allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme, and executing the PHP file via an HTTP GET request to /themes/<php_file_name>

Ссылки

https://github.com/jkana/HorizontCMS-1.0.0-beta-shell-upload
Exploit
Third Party Advisory
https://github.com/ttimot24/HorizontCMS/issues/21
Third Party Advisory
https://github.com/jkana/HorizontCMS-1.0.0-beta-shell-upload
Exploit
Third Party Advisory
https://github.com/ttimot24/HorizontCMS/issues/21
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:horizontcms_project:horizontcms:1.0.0:beta:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02255

Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-p5vc-h7j2-25qc

github

больше 3 лет назад

An unrestricted file upload issue in HorizontCMS 1.0.0-beta allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme, and executing the PHP file via an HTTP GET request to /themes/<php_file_name>

EPSS

Процентиль: 84%

0.02255

Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-434