exploitDog

CVE-2023-36348

Опубликовано: 23 июн. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

POS Codekop v2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the filename parameter.

Ссылки

http://packetstormsecurity.com/files/173278/POS-Codekop-2.0-Shell-Upload.html
https://www.youtube.com/watch?v=Ge0zqY0sGiQ
Exploit
Third Party Advisory
https://yuyudhn.github.io/pos-codekop-vulnerability/
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/173278/POS-Codekop-2.0-Shell-Upload.html
https://www.youtube.com/watch?v=Ge0zqY0sGiQ
Exploit
Third Party Advisory
https://yuyudhn.github.io/pos-codekop-vulnerability/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:codekop:codekop:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.04171

Низкий

8.8 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-c48q-hvj2-46c7

CVSS3: 8.8

github

больше 2 лет назад

POS Codekop v2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the filename parameter.

EPSS

Процентиль: 88%

0.04171

Низкий

8.8 High

CVSS3

Дефекты

CWE-862