Описание
SolarView Compact <= 6.0 is vulnerable to Insecure Permissions. Any file on the server can be read or modified because texteditor.php is not restricted.
Ссылки
- ExploitThird Party Advisory
- Not Applicable
- ExploitThird Party Advisory
- Not Applicable
Уязвимые конфигурации
Конфигурация 1Версия до 6.0 (включая)
Одновременно
cpe:2.3:o:contec:solarview_compact_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:contec:solarview_compact:-:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.91855
Критический
9.1 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-276
CWE-276
Связанные уязвимости
CVSS3: 9.1
github
больше 2 лет назад
SolarView Compact <= 6.0 is vulnerable to Insecure Permissions. Any file on the server can be read or modified because texteditor.php is not restricted.
EPSS
Процентиль: 100%
0.91855
Критический
9.1 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-276
CWE-276