CVE-2023-2776

Опубликовано: 17 мая 2023

Источник: nvd

CVSS3: 6.3

CVSS3: 9.8

CVSS2: 6.5

EPSS Низкий

Описание

A vulnerability was found in code-projects Simple Photo Gallery 1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-229282 is the identifier assigned to this vulnerability.

Ссылки

https://gitee.com/zyz0103/system-vul/blob/master/Simple%20Photo%20Gallery%20In%20PHP%20With%20Source%20Code%20has%20file%20upload%20vulnerability.pdf
Broken Link
https://vuldb.com/?ctiid.229282
Permissions Required
Third Party Advisory
https://vuldb.com/?id.229282
Permissions Required
Third Party Advisory
https://gitee.com/zyz0103/system-vul/blob/master/Simple%20Photo%20Gallery%20In%20PHP%20With%20Source%20Code%20has%20file%20upload%20vulnerability.pdf
Broken Link
https://vuldb.com/?ctiid.229282
Permissions Required
Third Party Advisory
https://vuldb.com/?id.229282
Permissions Required
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:simple_photo_gallery_project:simple_photo_gallery:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00077

Низкий

6.3 Medium

CVSS3

9.8 Critical

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-cv32-q6q8-6pqg

CVSS3: 6.3

github

больше 2 лет назад

EPSS

Процентиль: 23%

0.00077

Низкий

6.3 Medium

CVSS3

9.8 Critical

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-434