ID |
CVE-2024-50497
|
Sažetak |
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in BuyNowDepot Advanced Online Ordering and Delivery Platform allows PHP Local File Inclusion.This issue affects Advanced Online Ordering and Delivery Platform: from n/a through 2.0.0. |
Reference |
|
CVSS |
Base: | 8.1 |
Impact: | 5.9 |
Exploitability: | 2.2 |
|
Pristup |
Vektor | Složenost | Autentikacija |
NETWORK |
HIGH |
NONE |
|
Impact |
Povjerljivost | Cjelovitost | Dostupnost |
HIGH |
HIGH |
HIGH |
|
CVSS vektor |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Zadnje važnije ažuriranje |
28-10-2024 - 13:58 |
Objavljeno |
28-10-2024 - 13:15 |