exploitDog

CVE-2026-26699

Опубликовано: 02 мар. 2026

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/admin_change_picture.php.

Ссылки

https://github.com/Thirtypenny77/bug_report/blob/main/sourcecodester/personel-property-equipment-system/RCE-1.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:jon-remus-sevellejo:personnel_property_equipment_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00046

Низкий

7.2 High

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-47ww-8q94-pgp6

CVSS3: 8.8

github

около 2 месяцев назад

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/admin_change_picture.php.

EPSS

Процентиль: 14%

0.00046

Низкий

7.2 High

CVSS3

Дефекты

CWE-94