exploitDog

CVE-2022-26279

Опубликовано: 24 мар. 2022

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

EyouCMS v1.5.5 was discovered to have no access control in the component /data/sqldata.

Ссылки

https://github.com/eyoucms/eyoucms/issues/22
Exploit
Third Party Advisory
https://www.eyoucms.com/rizhi/
Release Notes
Vendor Advisory
https://github.com/eyoucms/eyoucms/issues/22
Exploit
Third Party Advisory
https://www.eyoucms.com/rizhi/
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:eyoucms:eyoucms:1.5.5:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00989

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-425

Связанные уязвимости

GHSA-98m7-qgf4-w58v

CVSS3: 9.8

github

почти 4 года назад

EyouCMS v1.5.5 was discovered to have no access control in the component /data/sqldata.

EPSS

Процентиль: 76%

0.00989

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-425