Lucene search
HistoryJan 03, 2015 - 10:59 p.m.
CVE-2014-9464
cve-2014-9464
sql injection
category.php
microweber cms
security vulnerability
8.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
48.7%
SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber:microweber | microweber | le | 0.95 |
Related
packetstorm
packetstorm
Microweber CMS 0.95 SQL Injection
2015-01-07 00:00:00
prion
prion
Sql injection
2015-01-03 22:59:00
veracode
veracode
SQL Injection
2017-07-30 20:47:59
securityvulns
securityvulns
Microweber 0.95 - SQL Injection Vulnerability
2015-02-02 00:00:00
exploitpack
exploitpack
Microweber CMS 0.95 - SQL Injection
2015-01-07 00:00:00
cvelist
cvelist
CVE-2014-9464
2022-10-03 16:20:41
zdt
zdt
Microweber CMS 0.95 - SQL Injection Vulnerability
2015-01-07 00:00:00
exploitdb
exploitdb
Microweber CMS 0.95 - SQL Injection
2015-01-07 00:00:00
8.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
48.7%
Related for CVE-2014-9464