Описание
GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Product
- Third Party Advisory
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 3.9.1 (включая)
cpe:2.3:a:gdidees:gdidees_cms:*:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.87202
Высокий
7.5 High
CVSS3
Дефекты
CWE-434
CWE-434
Связанные уязвимости
CVSS3: 7.5
github
больше 2 лет назад
GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.
EPSS
Процентиль: 99%
0.87202
Высокий
7.5 High
CVSS3
Дефекты
CWE-434
CWE-434