EUVD-2014-2341

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Multiple SQL injection vulnerabilities in webEdition CMS allow remote SQL command execution.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2014-2303	28 May 201400:00	–	circl
CVE	CVE-2014-2303	13 Jun 201414:00	–	cve
Cvelist	CVE-2014-2303	13 Jun 201414:00	–	cvelist
NVD	CVE-2014-2303	13 Jun 201414:55	–	nvd
Packet Storm	webEdition CMS 6.3.8.0 svn6985 SQL Injection	30 May 201400:00	–	packetstorm
Prion	Sql injection	13 Jun 201414:55	–	prion
securityvulns	[RT-SA-2014-005] SQL Injection in webEdition CMS File Browser Installer Script	14 Jun 201400:00	–	securityvulns
securityvulns	Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)	14 Jun 201400:00	–	securityvulns

[
  {
    "enisaIdVendor": [
      {
        "id": "ff12d3c2-3292-3342-9b9f-0486224065f4",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "8670c6a9-9f29-3eda-b1e5-e27082c1cba5",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2014-2303
securityfocus	www.securityfocus.com/archive/1/532231/100/0/threaded
packetstormsecurity	www.packetstormsecurity.com/files/126862/webEdition-CMS-6.3.8.0-svn6985-SQL-Injection.html
seclists	www.seclists.org/fulldisclosure/2014/May/148
redteam-pentesting	www.redteam-pentesting.de/en/advisories/rt-sa-2014-005/-sql-injection-in-webedition-cms-file-browser
securityfocus	www.securityfocus.com/bid/67689
webedition	www.webedition.org/de/aktuelles/allgemein/Wichtiges-Sicherheitsupdate-fuer-CMS-webEdition-veroeffentlicht
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 27.5

EPSS0.04123

sql injection vulnerability webedition cms remote execution