Lucene search

GoogleOSV:GHSA-584H-JHXH-PXP2

HistoryMay 13, 2022 - 1:11 a.m.

Codiad remote code execution vulnerability

2022-05-1301:11:16

Google

osv.dev

7.1 High

AI Score

Confidence

Low

0.192 Low

EPSS

Percentile

96.3%

Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.

CPENameOperatorVersion
codiad/codiadeq1.3.6

CPE	Name	Operator	Version
	codiad/codiad	eq	1.3.6

References

packetstormsecurity.com/files/161944/Codiad-2.8.4-Remote-Code-Execution.html

github.com/Codiad/Codiad

github.com/WangYihang/Codiad-Remote-Code-Execute-Exploit

nvd.nist.gov/vuln/detail/CVE-2018-14009