CVE-2014-2302

🗓️ 19 Jul 2018 17:00:29Reported by [email protected]Type

The installer script in webEdition CMS susceptible to PHP Object Injectio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2014-2302	19 Jul 201817:29	–	cve
Cvelist	CVE-2014-2302	19 Jul 201817:00	–	cvelist
Prion	Design/Logic Flaw	19 Jul 201817:29	–	prion
securityvulns	[RT-SA-2014-004] Remote Command Execution in webEdition CMS Installer Script	14 Jun 201400:00	–	securityvulns
securityvulns	Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)	14 Jun 201400:00	–	securityvulns
Packet Storm	webEdition CMS 2.8.0.0 Remote Command Execution	30 May 201400:00	–	packetstorm

Nvd

Node

webedition webedition_cmsRange<6.2.7.0

webedition webedition_cmsRange6.3.0–6.3.8

webedition webedition_cmsMatch6.2.7.0s1

webedition webedition_cmsMatch6.3.8s1

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/126861/webEdition-CMS-2.8.0.0-Remote-Command-Execution.html
securityfocus	www.securityfocus.com/archive/1/532230/100/0/threaded
redteam-pentesting	www.redteam-pentesting.de/advisories/rt-sa-2014-004
securityfocus	www.securityfocus.com/bid/67692
seclists	www.seclists.org/fulldisclosure/2014/May/147

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Jul 2018 17:29Current

9.6High risk

Vulners AI Score9.6

CVSS27.5

CVSS39.8

EPSS0.18364

CWE-94