LFCMS 3.8.6 /install.php Path 信息公开

条目编辑历史差异jsonxmlCTI

字段2018-12-31 15時40分2020-04-25 11時27分
nameLFCMSLFCMS
version3.8.63.8.6
file/install.php?s=/1/install.php?s=/1
cwe200 (信息公开)200 (信息公开)
risk11
cvss2_vuldb_basescore5.05.0
cvss2_vuldb_tempscore5.05.0
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiNN
cvss2_vuldb_aiNN
cvss2_nvd_avNN
cvss2_nvd_acLL
cvss2_nvd_auNN
cvss2_nvd_ciPP
cvss2_nvd_iiNN
cvss2_nvd_aiNN
cvss3_meta_basescore6.46.4
cvss3_meta_tempscore6.46.4
cvss3_vuldb_basescore5.35.3
cvss3_vuldb_tempscore5.35.3
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iNN
cvss3_vuldb_aNN
cvss3_nvd_avNN
cvss3_nvd_acLL
cvss3_nvd_prNN
cvss3_nvd_uiNN
cvss3_nvd_sUU
cvss3_nvd_cHH
cvss3_nvd_iNN
cvss3_nvd_aNN
titlewordPathPath
date1546128000 (2018-12-30)1546128000 (2018-12-30)
urlhttps://github.com/AvaterXXX/CVEs/blob/master/lfdycms.md#information_disclosurehttps://github.com/AvaterXXX/CVEs/blob/master/lfdycms.md#information_disclosure
price_0day$0-$5k$0-$5k
cveCVE-2018-20602CVE-2018-20602
cve_assigned15461280001546128000
cve_nvd_published15461280001546128000
cve_nvd_summaryLei Feng TV CMS (aka LFCMS) 3.8.6 allows full path disclosure via the /install.php?s=/1 URI.Lei Feng TV CMS (aka LFCMS) 3.8.6 allows full path disclosure via the /install.php?s=/1 URI.
seealso128564 128563128564 128563
locationWebsiteWebsite
cvss2_vuldb_eNDND
cvss2_vuldb_rlNDND
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlXX
cvss3_vuldb_rcXX
0day_days2828
cvss3_nvd_basescore7.57.5
discoverydate1543708800

Want to stay up to date on a daily basis?

Enable the mail alert feature now!