Lucene search
K

5 matches found

securityvulns
securityvulns
added 2013/09/09 12:0 a.m.73 views

Multiple Vulnerabilities in BigTree CMS

Advisory ID: HTB23165 Product: BigTree CMS Vendor: BigTree CMS Vulnerable Versions: 4.0 RC2 and probably prior Tested Version: 4.0 RC2 Vendor Notification: July 17, 2013 Vendor Patch: July 17, 2013 Public Disclosure: August 7, 2013 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting...

7.5CVSS0.4AI score0.03295EPSS
Exploits8
CVE
CVE
added 2013/08/13 6:0 p.m.117 views

CVE-2013-4879

Vulnerability: CVE-2013-4879 affects BigTree CMS 4.0 RC2 and earlier, due to an SQL injection in the code path that processes input via PATH_INFO to index.php (affecting core/inc/bigtree/cms.php). The root cause is insufficient sanitization/validation of user-supplied data, enabling remote attack...

7.5CVSS8.3AI score0.03169EPSS
Exploits6References5Affected Software1
0day.today
0day.today
added 2013/08/08 12:0 a.m.70 views

BigTree CMS 4.0 RC2 - Multiple Vulnerabilities

BigTree CMS version 4.0 RC2 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities. Vendor: BigTree CMS Vulnerable Versions: 4.0 RC2 and probably prior Tested Version: 4.0 RC2 Vendor Notification: July 17, 2013 Vendor Patch: July 17, 2013 Public...

7.5CVSS7.6AI score0.03295EPSS
Exploits8
Exploit DB
Exploit DB
added 2013/08/08 12:0 a.m.66 views

BigTree CMS 4.0 RC2 - Multiple Vulnerabilities

Advisory ID: HTB23165 Product: BigTree CMS Vendor: BigTree CMS Vulnerable Versions: 4.0 RC2 and probably prior Tested Version: 4.0 RC2 Vendor Notification: July 17, 2013 Vendor Patch: July 17, 2013 Public Disclosure: August 7, 2013 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting...

7.5CVSS7AI score0.03295EPSS
Exploits8
Circl
Circl
added 2013/08/08 12:0 a.m.4 views

CVE-2013-4879

creationtimestamp| type| source ---|---|--- 2013-08-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/27431...

7.5CVSS5.7AI score0.03169EPSS
Exploits6References1
Rows per page
Query Builder