Lucene search
GitHub Advisory DatabaseGHSA-59FH-RJQ3-XQ7JHistoryDec 06, 2022 - 6:30 p.m.
Thinkphp has a code logic error
2022-12-0618:30:19
CWE-434
GitHub Advisory Database
github.com
23
thinkphp
code logic error
file upload
software
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
31.0%
Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.
Affected configurations
Node
topthinkframeworkRange5.1–5.1.41
ORtopthinkframeworkRange≤5.0.24
Related
osv
osv
Thinkphp has a code logic error
2022-12-06 18:30:19
CVE-2022-44289
2022-12-06 16:15:11
nvd
nvd
CVE-2022-44289
2022-12-06 16:15:11
cvelist
cvelist
CVE-2022-44289
2022-12-06 00:00:00
prion
prion
Unrestricted file upload
2022-12-06 16:15:00
cve
cve
CVE-2022-44289
2022-12-06 16:15:11
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
31.0%
Related for GHSA-59FH-RJQ3-XQ7J