exploitDog

CVE-2023-27180

Опубликовано: 07 апр. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

GDidees CMS v3.9.1 was discovered to contain a source code disclosure vulnerability by the backup feature which is accessible via /_admin/backup.php.

Ссылки

https://gist.github.com/Hadi999/d691e35d4f494d37ccc5638e68227606
Exploit
Third Party Advisory
https://github.com/chamilo/pclzip
Not Applicable
https://www.gdidees.eu/cms-1-0.html
Product
https://gist.github.com/Hadi999/d691e35d4f494d37ccc5638e68227606
Exploit
Third Party Advisory
https://github.com/chamilo/pclzip
Not Applicable
https://www.gdidees.eu/cms-1-0.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gdidees:gdidees_cms:*:*:*:*:*:*:*:*

Версия до 3.9.1 (включая)

EPSS

Процентиль: 55%

0.00322

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-552

Связанные уязвимости

GHSA-v46r-626m-f3pp

CVSS3: 7.5

github

почти 3 года назад

GDidees CMS v3.9.1 was discovered to contain a source code disclosure vulnerability by the backup feature which is accessible via /_admin/backup.php.

EPSS

Процентиль: 55%

0.00322

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-552