ГлавнаяУязвимости → CVE-2024-48112
9.8критическая

CVE-2024-48112

Описание

A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.

Затрагиваемое ПО
Thinkphp Thinkphp
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/nn0nkey/nn0nkey/blob/main/Thinkphp/CVE-2024-48112.mdhttps://github.com/top-think/think