Количество 2
Количество 2
CVE-2020-10806
eZ Publish Kernel before 5.4.14.1, 6.x before 6.13.6.2, and 7.x before 7.5.6.2 and eZ Publish Legacy before 5.4.14.1, 2017 before 2017.12.7.2, and 2019 before 2019.03.4.2 allow remote attackers to execute arbitrary code by uploading PHP code, unless the vhost configuration permits only app.php execution.
GHSA-54p5-gxq6-j98g
eZ Publish Kernel and Legacy Unrestricted Upload of File with Dangerous Type
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-10806 eZ Publish Kernel before 5.4.14.1, 6.x before 6.13.6.2, and 7.x before 7.5.6.2 and eZ Publish Legacy before 5.4.14.1, 2017 before 2017.12.7.2, and 2019 before 2019.03.4.2 allow remote attackers to execute arbitrary code by uploading PHP code, unless the vhost configuration permits only app.php execution. | CVSS3: 9.8 | 3% Низкий | почти 6 лет назад |
| GHSA-54p5-gxq6-j98g eZ Publish Kernel and Legacy Unrestricted Upload of File with Dangerous Type | CVSS3: 9.8 | 3% Низкий | больше 3 лет назад |
Уязвимостей на страницу