Lucene search
K

4 matches found

securityvulns
securityvulns
added 2014/06/14 12:0 a.m.94 views

[RT-SA-2014-005] SQL Injection in webEdition CMS File Browser Installer Script

Advisory: SQL Injection in webEdition CMS File Browser RedTeam Pentesting discovered an SQL injection vulnerability in the file browser component of webEdition CMS during a penetration test. Unauthenticated attackers can get read-only access on the SQL database used by webEdition and read for...

7.5CVSS7.2AI score0.0257EPSS
Exploits2
CVE
CVE
added 2014/06/13 2:0 p.m.49 views

CVE-2014-2303

The CVE-2014-2303 issue affects webEdition CMS, specifically the file browser component we_fs.php. It describes SQL injection via the GET parameters table and order that can be exploited to execute arbitrary SQL, with unauthenticated attackers potentially reading the CMS’s database (including pas...

7.5CVSS8.7AI score0.0257EPSS
Exploits2References6Affected Software1
Packet Storm
Packet Storm
added 2014/05/30 12:0 a.m.84 views

webEdition CMS 6.3.8.0 svn6985 SQL Injection

Advisory: SQL Injection in webEdition CMS File Browser RedTeam Pentesting discovered an SQL injection vulnerability in the file browser component of webEdition CMS during a penetration test. Unauthenticated attackers can get read-only access on the SQL database used by webEdition and read for...

7.5CVSS6.7AI score0.0257EPSS
Exploits2
Circl
Circl
added 2014/05/28 12:0 a.m.22 views

CVE-2014-2303

creationtimestamp| type| source ---|---|--- 2014-05-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39206...

7.5CVSS6.9AI score0.0257EPSS
Exploits2References1
Rows per page
Query Builder