Lucene search

[email protected]CVE-2001-1014

HistorySep 15, 2001 - 4:00 a.m.

CVE-2001-1014

2001-09-1504:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-1014

webdiscount(e)shop

eshop.pl

remote attack

arbitrary commands

shell metacharacters.

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.291 Low

EPSS

Percentile

96.8%

JSON

eshop.pl in WebDiscount(e)shop allows remote attackers to execute arbitrary commands via shell metacharacters in the seite parameter.

CPENameOperatorVersion
michael_boehme:webdiscount_e_shop_online_shop_systemmichael boehme webdiscount e shop online shop systemeq1.0

CPE	Name	Operator	Version
michael_boehme:webdiscount_e_shop_online_shop_system	michael boehme webdiscount e shop online shop system	eq	1.0

References

www.securityfocus.com/archive/1/214456

www.securityfocus.com/bid/3340

exchange.xforce.ibmcloud.com/vulnerabilities/7128

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.291 Low

EPSS

Percentile

96.8%

JSON

Related for CVE-2001-1014

openvas1