exploitDog

CVE-2021-25809

Опубликовано: 23 июл. 2021

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

UCMS 1.5.0 was discovered to contain a physical path leakage via an error message returned by the adminchannelscache() function in top.php.

Ссылки

https://github.com/Gingsguard/ucms/blob/main/UCMS%20v.1.5.0%20Information%20leakage.md
Exploit
Third Party Advisory
https://github.com/Gingsguard/ucms/blob/main/UCMS%20v.1.5.0%20Information%20leakage.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ucms_project:ucms:1.5.0:*:*:*:*:*:*:*

EPSS

Процентиль: 43%

0.00209

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-209

Связанные уязвимости

GHSA-34r8-h3gq-qmjj

CVSS3: 5.3

github

больше 3 лет назад

UCMS 1.5.0 was discovered to contain a physical path leakage via an error message returned by the adminchannelscache() function in top.php.

EPSS

Процентиль: 43%

0.00209

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-209