exploitDog

CVE-2022-32199

Опубликовано: 27 мар. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

db_convert.php in ScriptCase through 9.9.008 is vulnerable to Arbitrary File Deletion by an admin via a directory traversal sequence in the file parameter.

Ссылки

https://github.com/Toxich4/CVE-2022-32199
Exploit
Third Party Advisory
https://www.scriptcase.net/download/
Product
https://github.com/Toxich4/CVE-2022-32199
Exploit
Third Party Advisory
https://www.scriptcase.net/download/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:scriptcase:scriptcase:*:*:*:*:*:*:*:*

Версия до 9.9.008 (включая)

EPSS

Процентиль: 91%

0.0708

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-22

CWE-22

Связанные уязвимости

GHSA-qcgm-v3pw-fqx8

CVSS3: 6.5

github

почти 3 года назад

db_convert.php in ScriptCase through 9.9.008 is vulnerable to Arbitrary File Deletion by an admin via a directory traversal sequence in the file parameter.

EPSS

Процентиль: 91%

0.0708

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-22

CWE-22