1 results (0.004 seconds)

CVSS: 7.5EPSS: 3%CPEs: 11EXPL: 0

CGI RESCUE BloBee 1.20 and earlier allows remote attackers to write to arbitrary files, and consequently execute arbitrary code, via unspecified vectors. CGI RESCUE BloBee 1.20 y anteriores permite a atacantes remotos escribir en ficheros arbitrarios, y como consecuencia ejecutar código arbitrario, a través de vectores no especificados. • http://jvn.jp/en/jp/JVN24336273/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2015-000087 http://www.securityfocus.com/bid/75183 • CWE-20: Improper Input Validation •