Lucene search
GoogleOSV:CVE-2023-36299HistoryAug 03, 2023 - 3:15 p.m.
CVE-2023-36299
2023-08-0315:15:28
Google
osv.dev
5
file upload
typecho
remote code execution
index.php
vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
Low
EPSS
0.006
Percentile
77.9%
A File Upload vulnerability in typecho v.1.2.1 allows a remote attacker to execute arbitrary code via the upload and options-general parameters in index.php.
Related
nvd
nvd
CVE-2023-36299
2023-08-03 15:15:28
cve
cve
CVE-2023-36299
2023-08-03 15:15:28
cvelist
cvelist
CVE-2023-36299
2023-08-03 00:00:00
prion
prion
Unrestricted file upload
2023-08-03 15:15:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
Low
EPSS
0.006
Percentile
77.9%
Related for OSV:CVE-2023-36299