Описание
In Umbraco UmbracoForms through 8.13.16, an authenticated attacker can supply a malicious WSDL (aka Webservice) URL as a data source for remote code execution.
EPSS
Процентиль: 39%
0.00177
Низкий
7.5 High
CVSS3
Дефекты
CWE-829
Связанные уязвимости
CVSS3: 9.9
github
25 дней назад
UmbracoForms Vulnerable to Remote Code Execution via Untrusted WSDL Compilation in Dynamic SOAP Client Generation
EPSS
Процентиль: 39%
0.00177
Низкий
7.5 High
CVSS3
Дефекты
CWE-829