Lucene search
HistoryDec 16, 2014 - 6:59 p.m.
CVE-2014-9057
cve-2014-9057
sql injection
movable type
xml-rpc
vulnerability
nvd
8.2 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
44.7%
SQL injection vulnerability in the XML-RPC interface in Movable Type before 5.18, 5.2.x before 5.2.11, and 6.x before 6.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Related
checkpoint_advisories
checkpoint_advisories
MovableType Unsanitized Input SQL Injection (CVE-2014-9057)
2014-12-03 00:00:00
openvas
openvas
Movable Type SQL Injection Vulnerability
2015-05-27 00:00:00
Debian: Security Advisory (DSA-3183-1)
2015-03-11 00:00:00
prion
prion
Sql injection
2014-12-16 18:59:00
ubuntucve
ubuntucve
CVE-2014-9057
2014-12-16 00:00:00
osv
osv
movabletype-opensource - security update
2015-03-12 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3183-1] movabletype-opensource security update
2015-03-23 00:00:00
debian
debian
[SECURITY] [DSA 3183-1] movabletype-opensource security update
2015-03-12 15:22:32
[SECURITY] [DSA 3183-1] movabletype-opensource security update
2015-03-12 15:22:32
nessus
nessus
Debian DSA-3183-1 : movabletype-opensource - security update
2015-03-13 00:00:00
8.2 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
44.7%
Related for CVE-2014-9057