exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2011-2195

около 4 лет назад

A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.

CVSS3: 9.8

EPSS: Низкий

CVE-2011-2195

около 4 лет назад

A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.

CVSS3: 9.8

EPSS: Низкий

CVE-2011-2195

около 4 лет назад

A flaw was found in WebSVN 2.3.2. Without prior authentication, if the ...

CVSS3: 9.8

EPSS: Низкий

GHSA-q3rm-gwvh-vhv3

больше 3 лет назад

A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2011-2195 A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.	CVSS3: 9.8	3% Низкий	около 4 лет назад
CVE-2011-2195 A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.	CVSS3: 9.8	3% Низкий	около 4 лет назад
CVE-2011-2195 A flaw was found in WebSVN 2.3.2. Without prior authentication, if the ...	CVSS3: 9.8	3% Низкий	около 4 лет назад
GHSA-q3rm-gwvh-vhv3 A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.		3% Низкий	больше 3 лет назад

Уязвимостей на страницу