Количество 2
Количество 2
CVE-2019-11401
почти 7 лет назад
A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted.
CVSS3: 7.2
EPSS: Низкий
GHSA-ff4w-8chr-w2x9
больше 3 лет назад
SiteServer CMS RCE via unsafe file upload
CVSS3: 7.2
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-11401 A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted. | CVSS3: 7.2 | 2% Низкий | почти 7 лет назад |
| GHSA-ff4w-8chr-w2x9 SiteServer CMS RCE via unsafe file upload | CVSS3: 7.2 | 2% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20