CVE-2024-4818

Опубликовано: 14 мая 2024

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

A vulnerability was found in Campcodes Online Laundry Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263939.

Ссылки

https://github.com/yylmm/CVE/blob/main/Online%20Laundry%20Management%20System/LFI.md
Exploit
https://vuldb.com/?ctiid.263939
Permissions Required
VDB Entry
https://vuldb.com/?id.263939
Permissions Required
VDB Entry
https://vuldb.com/?submit.333057
Third Party Advisory
VDB Entry
https://github.com/yylmm/CVE/blob/main/Online%20Laundry%20Management%20System/LFI.md
Exploit
https://vuldb.com/?ctiid.263939
Permissions Required
VDB Entry
https://vuldb.com/?id.263939
Permissions Required
VDB Entry
https://vuldb.com/?submit.333057
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:campcodes:online_laundry_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00309

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-73

NVD-CWE-Other

Связанные уязвимости

GHSA-6ff3-gqc7-rp56