Описание
The Borg theme before 1.1.19 for Backdrop CMS does not sufficiently sanitize path arguments that are passed in via a URL. The function borg_preprocess_page in the file template.php does not properly sanitize incoming path arguments before using them.
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.19 (исключая)
cpe:2.3:a:borg_project:borg:*:*:*:*:*:backdrop_cms:*:*
EPSS
Процентиль: 33%
0.00134
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 5.3
debian
почти 3 года назад
The Borg theme before 1.1.19 for Backdrop CMS does not sufficiently sa ...
CVSS3: 5.3
github
почти 3 года назад
The Borg theme before 1.1.19 for Backdrop CMS does not sufficiently sanitize path arguments that are passed in via a URL. The function borg_preprocess_page in the file template.php does not properly sanitize incoming path arguments before using them.
EPSS
Процентиль: 33%
0.00134
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-22
CWE-22