9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.347 Low
EPSS
Percentile
97.1%
Codiad Web IDE through 2.8.4 allows PHP Code injection.
CPE | Name | Operator | Version |
---|---|---|---|
codiad/codiad | eq | 1.3.6 |
packetstormsecurity.com/files/162753/Codiad-2.8.4-Remote-Code-Execution.html
github.com/Codiad/Codiad
github.com/Codiad/Codiad/commits/master
github.com/Hacker5preme/Exploits/tree/main/CVE-2019-19208-Exploit
herolab.usd.de/en/security-advisories
herolab.usd.de/security-advisories/usd-2019-0049
nvd.nist.gov/vuln/detail/CVE-2019-19208
www.exploit-db.com/exploits/49902
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.347 Low
EPSS
Percentile
97.1%