A Remote Code Execution (RCE) vulnerability exists in ThinkPHP 3.x.x via value[_filename] in index.php, which could let a malicious user obtain server control privileges.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/Stakcery/Web-Security/issues/1 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-02-10T16:05:25
Updated: 2024-08-04T04:32:13.250Z
Reserved: 2021-12-13T00:00:00
Link: CVE-2021-44892
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-02-10T17:15:09.330
Modified: 2024-11-21T06:31:39.903
Link: CVE-2021-44892
Redhat
No data.