Lucene search
HistoryJan 03, 2015 - 10:59 p.m.
CVE-2014-9464
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.2%
SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.
Affected configurations
Node
microwebermicroweberRange≤0.95
Related
cve
cve
CVE-2014-9464
2022-10-03 16:20:41
prion
prion
Sql injection
2015-01-03 22:59:00
packetstorm
packetstorm
Microweber CMS 0.95 SQL Injection
2015-01-07 00:00:00
exploitpack
exploitpack
Microweber CMS 0.95 - SQL Injection
2015-01-07 00:00:00
securityvulns
securityvulns
Microweber 0.95 - SQL Injection Vulnerability
2015-02-02 00:00:00
cvelist
cvelist
CVE-2014-9464
2022-10-03 16:20:41
veracode
veracode
SQL Injection
2017-07-30 20:47:59
zdt
zdt
Microweber CMS 0.95 - SQL Injection Vulnerability
2015-01-07 00:00:00
exploitdb
exploitdb
Microweber CMS 0.95 - SQL Injection
2015-01-07 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.2%
Related for NVD:CVE-2014-9464