Search for vulnerabilities
| Vulnerability ID | VCID-ja39-kdvq-yufv |
| Aliases |
GHSA-3vwr-jj4f-h98x
|
| Summary | eZ Publish Remote code execution in file uploads |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 8.0 |
| Risk | 4.0 |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| generic_textual | HIGH | https://ezplatform.com/security-advisories/ezsa-2020-001-remote-code-execution-in-file-uploads |
| cvssv3.1_qr | HIGH | https://github.com/advisories/GHSA-3vwr-jj4f-h98x |
| generic_textual | HIGH | https://github.com/ezsystems/ezpublish-kernel |
| generic_textual | HIGH | https://github.com/FriendsOfPHP/security-advisories/blob/master/ezsystems/ezpublish-kernel/2020-03-03-1.yaml |
| generic_textual | HIGH | https://web.archive.org/web/20210304031629/https://developers.ibexa.co/security-advisories/ezsa-2020-001-remote-code-execution-in-file-uploads |
No EPSS data available for this vulnerability.
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-11T20:34:48.584045+00:00 | GHSA Importer | Import | https://github.com/advisories/GHSA-3vwr-jj4f-h98x | 38.6.0 |