Описание
ESPCMS P8 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the fetch_filename function at \espcms_public\espcms_templates\ESPCMS_Templates.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ecisp:espcms-p8:-:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02516
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7.2
github
больше 3 лет назад
ESPCMS P8 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the fetch_filename function at \espcms_public\espcms_templates\ESPCMS_Templates.
EPSS
Процентиль: 85%
0.02516
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo