Описание
An arbitrary file upload vulnerability in the plugin installation feature of YZNCMS v2.0.1 allows attackers to execute arbitrary code via uploading a crafted Zip file.
Ссылки
- Not Applicable
- Product
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:yzncms:yzncms:2.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00021
Низкий
4.4 Medium
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 4.4
github
11 месяцев назад
An arbitrary file upload vulnerability in the plugin installation feature of YZNCMS v2.0.1 allows attackers to execute arbitrary code via uploading a crafted Zip file.
EPSS
Процентиль: 5%
0.00021
Низкий
4.4 Medium
CVSS3
Дефекты
CWE-77