Description

PHP Remote File Inclusion in GitHub repository flatpressblog/flatpress prior to 1.3.

Related CPE's

a

flatpress

flatpress

Vulnerable

References

https://github.com/flatpressblog/flatpress/commit/c30d52b28483e1e512d0d81758d4c149f02b4068

PatchThird Party Advisory

https://huntr.dev/bounties/3dab0466-c35d-4163-b3c7-a8666e2f7d95

ExploitPatchThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-98

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-12-18T13:15:09.963

2 years ago

Last modified

2022-12-22T18:44:39.953

2 years ago