Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2010-3313

🗓️ 22 Sep 2010 18:00:00Reported by redhatType 
cve
 cve🔗 web.nvd.nist.gov👁 199 Views🌐 WEB

CVE-2010-3313 in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 before 9.1.20100309 and 9.2 before 9.2.2010030

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Tenable Nessus		eGroupWare < 1.6.003 Mutiple Vulnerabilities
18 Mar 201000:00
nessus
Tenable Nessus		Debian DSA-2013-1 : egroupware - several vulnerabilities
15 Mar 201000:00
nessus
Tenable Nessus		eGroupWare spellchecker.php Arbitrary Shell Command Execution
10 Mar 201000:00
nessus
Tenable Nessus		GLSA-201412-10 : Multiple packages, Multiple vulnerabilities fixed in 2012
15 Dec 201400:00
nessus
ATTACKERKB		CVE-2010-3313
22 Sep 201000:00
attackerkb
Circl		CVE-2010-3313
16 Mar 201000:00
circl
Cvelist		CVE-2010-3313
22 Sep 201018:00
cvelist
EUVD		EUVD-2010-3311
7 Oct 202500:30
euvd
Github Security Blog		EGroupware Code Injection vulnerability
17 May 202205:06
github
Gentoo Linux		Multiple packages, Multiple vulnerabilities fixed in 2012
11 Dec 201400:00
gentoo
Rows per page
NVD
Node
egroupwareegroupwareMatch1.4.001
OR
egroupwareegroupwareMatch1.4.001+.002
OR
egroupwareegroupwareMatch1.4.002
OR
egroupwareegroupwareMatch1.6.001
OR
egroupwareegroupwareMatch1.6.001+.002
OR
egroupwareegroupwareMatch1.6.002
OR
egroupwareegroupwareMatch9.1-commercial_epl
OR
egroupwareegroupwareMatch9.2-commercial_epl
ParameterPositionPathDescriptionCWE
aspell_pathquery paramphpgwapi/js/fckeditor/editor/dialog/fck_spellerpages/spellerpages/serverscripts/spellchecker.phpAllows remote attackers to execute arbitrary commands via shell metacharacters in the aspell_path or spellchecker_lang parameters.CWE-94
spellchecker_langquery paramphpgwapi/js/fckeditor/editor/dialog/fck_spellerpages/spellerpages/serverscripts/spellchecker.phpAllows remote attackers to execute arbitrary commands via shell metacharacters in the aspell_path or spellchecker_lang parameters.CWE-94

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 Apr 2026 01:13Current
7.6High risk
Vulners AI Score7.6
CVSS 27.5
EPSS0.023
CWE-94In Wild
cve2010-3313egroupwarenvdsecurity vulnerabilityremote executionshell metacharacters
199