Lucene search
K

6 matches found

Prion
Prion
added 2014/10/27 1:55 a.m.22 views

Code injection

EGroupware Enterprise Line EPL before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allows remote authenticated administrators to execute arbitrary PHP code via crafted callback values to the calluserfunc PHP function, as demonstrated using th...

8.5CVSS7.4AI score0.0184EPSS
Exploits6References4Affected Software1
Cvelist
Cvelist
added 2014/10/26 6:0 p.m.26 views

CVE-2014-2987

Multiple cross-site request forgery CSRF vulnerabilities in EGroupware Enterprise Line EPL before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allow remote attackers to hijack the authentication of administrators for requests that 1 create an...

7.8AI score0.01364EPSS
Exploits5References7
0day.today
0day.today
added 2014/05/17 12:0 a.m.80 views

EGroupware 1.8.006 - Multiple Vulnerabilities

EGroupware version 1.8.006 suffers from code execution and cross site request forgery vulnerabilities. Product: EGroupware Vendor: http://www.egroupware.org/ Vulnerable Versions: 1.8.006 community edition and probably prior Tested Version: 1.8.006 community edition Advisory Publication: April 23,...

6.8CVSS0.2AI score0.0184EPSS
Exploits6
exploitpack
exploitpack
added 2014/05/16 12:0 a.m.81 views

eGroupWare 1.8.006 - Multiple Vulnerabilities

eGroupWare 1.8.006 - Multiple Vulnerabilities Advisory ID: HTB23212 Product: EGroupware Vendor: http://www.egroupware.org/ Vulnerable Versions: 1.8.006 community edition and probably prior Tested Version: 1.8.006 community edition Advisory Publication: April 23, 2014 without technical details...

8.5CVSS0.4AI score0.0184EPSS
Exploits6
Exploit DB
Exploit DB
added 2014/05/16 12:0 a.m.72 views

eGroupWare 1.8.006 - Multiple Vulnerabilities

Advisory ID: HTB23212 Product: EGroupware Vendor: http://www.egroupware.org/ Vulnerable Versions: 1.8.006 community edition and probably prior Tested Version: 1.8.006 community edition Advisory Publication: April 23, 2014 without technical details Vendor Notification: April 23, 2014 Vendor Patch:...

8.5CVSS6.4AI score0.0184EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/05/16 12:0 a.m.55 views

EGroupware 1.8.006 Cross Site Request Forgery / Code Injection

Advisory ID: HTB23212 Product: EGroupware Vendor: http://www.egroupware.org/ Vulnerable Versions: 1.8.006 community edition and probably prior Tested Version: 1.8.006 community edition Advisory Publication: April 23, 2014 without technical details Vendor Notification: April 23, 2014 Vendor Patch:...

8.5CVSS0.4AI score0.0184EPSS
Exploits6
Rows per page
Query Builder