Lucene search
MitreCVE-2022-44289HistoryDec 06, 2022 - 4:15 p.m.
CVE-2022-44289
2022-12-0616:15:11
CWE-434
mitre
web.nvd.nist.gov
77
cve-2022-44289
thinkphp
nvd
code logic error
file upload
getshell
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
31.0%
Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.
Affected configurations
Node
thinkphpthinkphpMatch5.0.24
ORthinkphpthinkphpMatch5.1.41
Related
osv
osv
Thinkphp has a code logic error
2022-12-06 18:30:19
CVE-2022-44289
2022-12-06 16:15:11
nvd
nvd
CVE-2022-44289
2022-12-06 16:15:11
cvelist
cvelist
CVE-2022-44289
2022-12-06 00:00:00
prion
prion
Unrestricted file upload
2022-12-06 16:15:00
github
github
Thinkphp has a code logic error
2022-12-06 18:30:19
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
31.0%
Related for CVE-2022-44289