Описание
Unrestricted Upload of File with Dangerous Type vulnerability in Fernus Informatics LMS allows OS Command Injection, Server Side Include (SSI) Injection.This issue affects LMS: before 23.04.03.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 23.04.03 (исключая)
cpe:2.3:a:fernus:learning_management_systems:*:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00355
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 10
github
почти 3 года назад
Unrestricted Upload of File with Dangerous Type vulnerability in Fernus Informatics LMS allows OS Command Injection, Server Side Include (SSI) Injection.This issue affects LMS: before 23.04.03.
EPSS
Процентиль: 57%
0.00355
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-434