ГлавнаяУязвимости → CVE-2023-42286
9.8критическая

CVE-2023-42286

Описание

There is a PHP file inclusion vulnerability in the template configuration of eyoucms v1.6.4, allowing attackers to execute code or system commands through a carefully crafted malicious payload.

Затрагиваемое ПО
Eyoucms Eyoucms
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Nacl122/CVEReport/blob/main/CVE-2023-42286/CVE-2023-42286.mdhttps://github.com/Nacl122/CVEReport/blob/main/CVE-2023-42286/CVE-2023-42286.md