Lucene search
K

11 matches found

Cvelist
Cvelist
added 2020/02/17 9:14 p.m.30 views

CVE-2014-7236

Eval injection vulnerability in lib/TWiki/Plugins.pm in TWiki before 6.0.1 allows remote attackers to execute arbitrary Perl code via the debugenableplugins parameter to do/view/Main/WebHome...

9.4AI score0.55637EPSS
Exploits12References4
Saint
Saint
added 2015/03/30 12:0 a.m.32 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

9.1AI score0.55637EPSS
Exploits12
Saint
Saint
added 2015/03/30 12:0 a.m.30 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

6.4CVSS9.1AI score0.55637EPSS
Exploits12
Saint
Saint
added 2015/03/30 12:0 a.m.32 views

TWiki View Script debugenableplugins Request Parameter Vulnerability

Added: 03/30/2015 CVE: CVE-2014-7236 BID: 70372 OSVDB: 112977 Background TWiki is a web-based collaboration platform written in PERL. Problem The TWiki view script does not properly sanitize the debugenableplugins parameter before using it. Resolution Upgrade to TWiki-6.0.1 or higher, or apply th...

9.1CVSS9.1AI score0.55637EPSS
Exploits12
Circl
Circl
added 2015/03/19 12:0 a.m.10 views

CVE-2014-7236

creationtimestamp| type| source ---|---|--- 2015-03-19 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36438 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/http/twikidebugplugins.rb 2025-02-06 03:13:42+00:00| seen|...

9.1CVSS7.3AI score0.55637EPSS
Exploits12References2
0day.today
0day.today
added 2015/03/19 12:0 a.m.54 views

TWiki Debugenableplugins Remote Code Execution Exploit

TWiki versions 4.0.x through 6.0.0 contain a vulnerability in the Debug functionality. The value of the debugenableplugins parameter is used without proper sanitization in an Perl eval statement which allows remote code execution. This module requires Metasploit: http://metasploit.com/download...

0.2AI score0.55637EPSS
Exploits12
Exploit DB
Exploit DB
added 2015/03/19 12:0 a.m.51 views

TWiki Debugenableplugins - Remote Code Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'TWiki Debugenableplugins Remote Code Execution', 'Description' = %q TWiki 4.0.x-6.0.0 contains a vulnerability in the Debug...

9.1CVSS9.5AI score0.55637EPSS
Exploits12
Metasploit
Metasploit
added 2015/03/18 8:45 a.m.39 views

TWiki Debugenableplugins Remote Code Execution

TWiki 4.0.x-6.0.0 contains a vulnerability in the Debug functionality. The value of the debugenableplugins parameter is used without proper sanitization in an Perl eval statement which allows remote code execution. This module requires Metasploit: https://metasploit.com/download Current source:...

9.1CVSS9.2AI score0.55637EPSS
Exploits12
Check Point Advisories
Check Point Advisories
added 2014/12/03 12:0 a.m.5 views

Twiki Unauthenticated Remote Code Execution (CVE-2014-7236)

A remote code execution was discovered in TWiki. An unauthenticated attacker may use this vulnerability to execute code on the vulnerable server...

6.4CVSS3AI score0.55637EPSS
Exploits12
0day.today
0day.today
added 2014/10/10 12:0 a.m.73 views

Twiki Perl 4.x, 5.x, 6.x Upload Bypass / Code Execution Vulnerabilities

The debugenableplugins request parameter in Twiki versions 4.x, 5.x, and 6.0.0 allows arbitrary Perl code execution and suffer from a file upload bypass vulnerability. This is an advisory for TWiki administrators: The debugenableplugins request parameter allows arbitrary Perl code execution...

6.8CVSS0.1AI score0.55637EPSS
Exploits14
Packet Storm
Packet Storm
added 2014/10/10 12:0 a.m.62 views

Twiki Perl Code Execution

This is an advisory for TWiki administrators: The debugenableplugins request parameter allows arbitrary Perl code execution. TWiki http://twiki.org is an Open Source Enterprise Wiki and Web Application Platform used by millions of people. Vulnerable Software Version Attack Vectors Impact Severity...

9.3AI score0.55637EPSS
Exploits12
Rows per page
Query Builder