CVE-2013-4557

Опубликовано: 18 нояб. 2013

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 7.5

Описание

The Security Screen (core/securite/ecran_securite.php) before 1.1.8 for SPIP, as used in SPIP 3.0.x before 3.0.12, allows remote attackers to execute arbitrary PHP via the connect parameter.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	3.0.14-1
cosmic	not-affected	3.0.14-1
devel	not-affected	3.0.14-1
esm-apps/bionic	not-affected	3.0.14-1
esm-apps/xenial	not-affected	3.0.14-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.0.14-1]]
lucid	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 99%

0.69494

Средний

7.5 High

CVSS2

Связанные уязвимости

CVE-2013-4557

nvd

около 12 лет назад

The Security Screen (_core_/securite/ecran_securite.php) before 1.1.8 for SPIP, as used in SPIP 3.0.x before 3.0.12, allows remote attackers to execute arbitrary PHP via the connect parameter.

CVE-2013-4557

debian

около 12 лет назад

The Security Screen (_core_/securite/ecran_securite.php) before 1.1.8 ...

GHSA-p3c2-jj59-pgg6

github

больше 3 лет назад

The Security Screen (_core_/securite/ecran_securite.php) before 1.1.8 for SPIP, as used in SPIP 3.0.x before 3.0.12, allows remote attackers to execute arbitrary PHP via the connect parameter.

EPSS

Процентиль: 99%

0.69494

Средний

7.5 High

CVSS2

CVE-2013-4557

Описание

Пакет spip

Ссылки на источники

Связанные уязвимости