Описание
Codemers KLIMS 1.6.DEV allows Python code injection. A user can provide Python code as an input value for a parameter or qualifier (such as for sorting), which will get executed on the server side.
EPSS
Процентиль: 25%
0.00085
Низкий
7.3 High
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 7.3
github
10 месяцев назад
Codemers KLIMS 1.6.DEV allows Python code injection. A user can provide Python code as an input value for a parameter or qualifier (such as for sorting), which will get executed on the server side.
EPSS
Процентиль: 25%
0.00085
Низкий
7.3 High
CVSS3
Дефекты
CWE-77