9.5 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.3%
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler (for get_uri_args or get_post_args) to block the API misuse described in CVE-2018-9230.
github.com/alexazhou/VeryNginx/issues/218