Описание
A vulnerability has been found in DouPHP up to 1.8 Release 20251022. This impacts an unknown function of the file upload/include/file.class.php. The manipulation of the argument File leads to unrestricted upload. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 15%
0.00049
Низкий
4.7 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 4.7
github
3 месяца назад
A vulnerability has been found in DouPHP up to 1.8 Release 20251022. This impacts an unknown function of the file upload/include/file.class.php. The manipulation of the argument File leads to unrestricted upload. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 15%
0.00049
Низкий
4.7 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-284