exploitDog

CVE-2023-29721

Опубликовано: 24 мая 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

SofaWiki <= 3.8.9 has a file upload vulnerability that leads to command execution.

Ссылки

https://github.com/bellenuit/sofawiki/issues/27
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/xul18/Showcase/issues/2
Issue Tracking
Third Party Advisory
https://github.com/bellenuit/sofawiki/issues/27
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/xul18/Showcase/issues/2
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sofawiki_project:sofawiki:*:*:*:*:*:*:*:*

Версия до 3.8.9 (включая)

EPSS

Процентиль: 44%

0.00219

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-434

CWE-434

Связанные уязвимости

GHSA-hwrm-fmfj-vh26

CVSS3: 9.8

github

больше 2 лет назад

SofaWiki <= 3.8.9 has a file upload vulnerability that leads to command execution.

EPSS

Процентиль: 44%

0.00219

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-434

CWE-434