CVE-2023-29657

Опубликовано: 12 мая 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

eXtplorer 2.1.15 is vulnerable to Insecure Permissions. File upload in file manager allows uploading zip file containing php pages with arbitrary code executions.

Ссылки

http://blog.tristaomarinho.com/extplorer-2-1-15-arbitrary-file-upload/
Exploit
http://extplorer.net/
Product
http://blog.tristaomarinho.com/extplorer-2-1-15-arbitrary-file-upload/
Exploit
http://extplorer.net/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:extplorer:extplorer:2.1.15:*:*:*:*:*:*:*

EPSS

Процентиль: 39%

0.00177

Низкий

8.8 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

CVE-2023-29657

CVSS3: 8.8

ubuntu

больше 2 лет назад

eXtplorer 2.1.15 is vulnerable to Insecure Permissions. File upload in file manager allows uploading zip file containing php pages with arbitrary code executions.

CVE-2023-29657

CVSS3: 8.8

debian

больше 2 лет назад

eXtplorer 2.1.15 is vulnerable to Insecure Permissions. File upload in ...

GHSA-9337-wvr6-wx8x

CVSS3: 8.8

github

больше 2 лет назад

eXtplorer 2.1.15 is vulnerable to Insecure Permissions. File upload in file manager allows uploading zip file containing php pages with arbitrary code executions.

EPSS

Процентиль: 39%

0.00177

Низкий

8.8 High

CVSS3

Дефекты

CWE-434