CVSS: 9.8EPSS: 5%CPEs: 1EXPL: 1CVE-2022-29774
https://notcve.org/view.php?id=CVE-2022-29774
iSpy v7.2.2.0 is vulnerable to remote command execution via path traversal. iSpy versión v7.2.2.0 es vulnerable a la ejecución remota de comandos mediante path traversal • https://gist.github.com/securylight/79f673aa3a453c80c0e78f356a8f650b https://github.com/securylight/CVES_write_ups https://github.com/securylight/CVES_write_ups/blob/main/iSpy_connect.pdf • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-29775
https://notcve.org/view.php?id=CVE-2022-29775
iSpyConnect iSpy v7.2.2.0 allows attackers to bypass authentication via a crafted URL. iSpyConnect iSpy versión v7.2.2.0, permite a atacantes omitir la autenticación por medio de una URL diseñada • https://gist.github.com/securylight/79f673aa3a453c80c0e78f356a8f650b https://github.com/securylight/CVES_write_ups • CWE-287: Improper Authentication •