doorGets 7.0 /fileman/php/copydir.php divulgación de información

artículoeditHistoryDiffjsonxmlCTI

Una vulnerabilidad ha sido encontrada en doorGets 7.0 y clasificada como problemática. Una función desconocida del archivo /fileman/php/copydir.php es afectada por esta vulnerabilidad. No hay información respecto a posibles contramedidas. Se sugiere sustituir el producto con un equivalente.

Campo2019-05-01 13:532020-06-05 09:20
namedoorGetsdoorGets
version7.07.0
file/fileman/php/copydir.php/fileman/php/copydir.php
cwe200 (divulgación de información)200 (divulgación de información)
risk11
cvss2_vuldb_basescore4.34.3
cvss2_vuldb_tempscore4.34.3
cvss2_vuldb_avNN
cvss2_vuldb_acMM
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiNN
cvss2_vuldb_aiNN
cvss2_nvd_avNN
cvss2_nvd_acLL
cvss2_nvd_auNN
cvss2_nvd_ciPP
cvss2_nvd_iiNN
cvss2_nvd_aiNN
cvss3_meta_basescore6.46.4
cvss3_meta_tempscore6.46.4
cvss3_vuldb_basescore5.35.3
cvss3_vuldb_tempscore5.35.3
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iNN
cvss3_vuldb_aNN
cvss3_nvd_avNN
cvss3_nvd_acLL
cvss3_nvd_prNN
cvss3_nvd_uiNN
cvss3_nvd_sUU
cvss3_nvd_cHH
cvss3_nvd_iNN
cvss3_nvd_aNN
date1556582400 (2019-04-30)1556582400 (2019-04-30)
price_0day$0-$5k$0-$5k
cveCVE-2019-11607CVE-2019-11607
cve_assigned15565824001556582400
cve_nvd_summarydoorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/copydir.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information.doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/copydir.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information.
seealso134254 134253 134252 134251 134249134254 134253 134252 134251 134249
cvss2_vuldb_eNDND
cvss2_vuldb_rlNDND
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlXX
cvss3_vuldb_rcXX
0day_days11
cvss3_nvd_basescore7.57.5
discoverydate1556496000

Do you want to use VulDB in your project?

Use the official API to access entries easily!