0.01 Low
EPSS
Percentile
83.9%
Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the ‘file_url’ parameter in the component AdminUpdateController.class.php’.
github.com/star7th/showdoc
github.com/star7th/showdoc/commit/49b992d4c548c8c615a92b6efe8a50c8f1083abf
github.com/star7th/showdoc/issues/1406
nvd.nist.gov/vuln/detail/CVE-2021-36440