Lucene search
MitreCVELIST:CVE-2014-1401HistoryFeb 11, 2014 - 5:00 p.m.
CVE-2014-1401
2014-02-1117:00:00
mitre
www.cve.org
11
Multiple SQL injection vulnerabilities in AuraCMS 2.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) search parameter to mod/content/content.php or (2) CLIENT_IP, (3) X_FORWARDED_FOR, (4) X_FORWARDED, (5) FORWARDED_FOR, or (6) FORWARDED HTTP header to index.php.
References
packetstormsecurity.com/files/125079
secunia.com/advisories/56804
www.exploit-db.com/exploits/31520
www.securityfocus.com/archive/1/530930/100/0/threaded
exchange.xforce.ibmcloud.com/vulnerabilities/90965
github.com/auracms/AuraCMS/commit/4fe9d0d31a32df392f4d6ced8e5c25ed4af19ade
github.com/auracms/AuraCMS/commit/790f66ffbc4f23a6e13636fc79d0aa1a7d81e747
www.htbridge.com/advisory/HTB23196
Related
zdt
zdt
AuraCMS 2.3 - Multiple Vulnerabilities
2014-02-08 00:00:00
prion
prion
Sql injection
2014-02-11 17:55:00
seebug
seebug
AuraCMSε€δΈͺSQL注ε
₯ζΌζ΄
2014-02-08 00:00:00
securityvulns
securityvulns
Multiple SQL Injection Vulnerabilities in AuraCMS
2014-02-11 00:00:00
cve
cve
CVE-2014-1401
2014-02-11 17:55:06
htbridge
htbridge
Multiple SQL Injection Vulnerabilities in AuraCMS
2014-01-08 00:00:00
exploitdb
exploitdb
AuraCMS 2.3 - Multiple Vulnerabilities
2014-02-07 00:00:00
packetstorm
packetstorm
AuraCMS 2.3 SQL Injection
2014-02-06 00:00:00
nvd
nvd
CVE-2014-1401
2014-02-11 17:55:06
exploitpack
exploitpack
AuraCMS 2.3 - Multiple Vulnerabilities
2014-02-07 00:00:00