Описание
Arbitrary File Write vulnerability in the saveReportFile method of ureport2 2.2.9 and before allows attackers to write arbitrary files and run arbitrary commands via crafted POST request.
Ссылки
- Broken Link
- Third Party Advisory
- Broken Link
Уязвимые конфигурации
Конфигурация 1Версия до 2.2.9 (включая)
cpe:2.3:a:ureport2_project:ureport2:*:*:*:*:*:*:*:*
EPSS
Процентиль: 28%
0.00098
Низкий
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 9.8
github
около 2 лет назад
Arbitrary File Write vulnerability in the saveReportFile method of ureport2 2.2.9 and before allows attackers to write arbitrary files and run arbitrary commands via crafted POST request.
EPSS
Процентиль: 28%
0.00098
Низкий
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo