exploitDog

CVE-2023-50038

Опубликовано: 28 дек. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

There is an arbitrary file upload vulnerability in the background of textpattern cms v4.8.8, which leads to the loss of server permissions.

Ссылки

https://gist.github.com/LeopoldSkell/7e18bf09005c327a045abbfe39b1e676
Third Party Advisory
https://www.cnblogs.com/fengzun/articles/17862578.html
Exploit
https://gist.github.com/LeopoldSkell/7e18bf09005c327a045abbfe39b1e676
Third Party Advisory
https://www.cnblogs.com/fengzun/articles/17862578.html
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:textpattern:textpattern:4.8.8:-:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00074

Низкий

8.8 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

CVE-2023-50038

CVSS3: 8.8

debian

около 2 лет назад

There is an arbitrary file upload vulnerability in the background of t ...

GHSA-3r3w-gg47-w53h

CVSS3: 8.8

github

около 2 лет назад

There is an arbitrary file upload vulnerability in the background of textpattern cms v4.8.8, which leads to the loss of server permissions.

EPSS

Процентиль: 23%

0.00074

Низкий

8.8 High

CVSS3

Дефекты

CWE-434