Design/Logic Flaw

2019-04-3020:29:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.1%

JSON

/fileman/php/upload.php in doorGets 7.0 has an arbitrary file upload vulnerability. A remote normal registered user can use this vulnerability to upload backdoor files to control the server.

CPENameOperatorVersion
doorgets_cmseq7.0

CPE	Name	Operator	Version
	doorgets_cms	eq	7.0

References

github.com/itodaro/doorGets_cve