Описание
CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fetch_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:cmseasy:cmseasy:7.7.7.9:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00159
Низкий
4.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-Other
CWE-98
Связанные уязвимости
CVSS3: 4.9
github
почти 2 года назад
CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fetch_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files.
EPSS
Процентиль: 37%
0.00159
Низкий
4.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-Other
CWE-98