Lucene search
K

8 matches found

securityvulns
securityvulns
added 2015/03/23 12:0 a.m.55 views

[SECURITY] [DSA 3183-1] movabletype-opensource security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3183-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 12, 2015 http://www.debian.org/security/faq -...

7.5CVSS4.2AI score0.75029EPSS
Exploits5
Debian
Debian
added 2015/03/12 3:22 p.m.23 views

[SECURITY] [DSA 3183-1] movabletype-opensource security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3183-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 12, 2015 http://www.debian.org/security/faq -...

7.5CVSS4.6AI score0.75029EPSS
Exploits5
Debian
Debian
added 2015/03/12 3:22 p.m.28 views

[SECURITY] [DSA 3183-1] movabletype-opensource security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3183-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 12, 2015 http://www.debian.org/security/faq -...

7.5CVSS8AI score0.75029EPSS
Exploits5
OpenVAS
OpenVAS
added 2015/03/12 12:0 a.m.35 views

Debian Security Advisory DSA 3183-1 (movabletype-opensource - security update)

Multiple vulnerabilities have been discovered in Movable Type, a blogging system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-2184 Unsafe use of Storable::thaw in the handling of comments to blog posts could allow remote attackers to include and...

7.5CVSS0.6AI score0.75029EPSS
Exploits5References1
NVD
NVD
added 2014/12/16 6:59 p.m.23 views

CVE-2014-9057

SQL injection vulnerability in the XML-RPC interface in Movable Type before 5.18, 5.2.x before 5.2.11, and 6.x before 6.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.2AI score0.01989EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/12/16 6:59 p.m.25 views

CVE-2014-9057

SQL injection vulnerability in the XML-RPC interface in Movable Type before 5.18, 5.2.x before 5.2.11, and 6.x before 6.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS6.1AI score0.01989EPSS
Exploits0References4
CVE
CVE
added 2014/12/16 6:0 p.m.61 views

CVE-2014-9057

Summary of CVE-2014-9057 (Movable Type SQLi) : A SQL injection in the XML-RPC interface of Movable Type affected versions including 5.x up to 5.18, 5.2.x prior to 5.2.11, and 6.x prior to 6.0.6. The vulnerability allowed remote attackers to execute arbitrary SQL commands via unspecified vectors. ...

7.5CVSS8.3AI score0.01989EPSS
Exploits0References4Affected Software1
Check Point Advisories
Check Point Advisories
added 2014/12/03 12:0 a.m.10 views

MovableType Unsanitized Input SQL Injection (CVE-2014-9057)

An SQL injection vulnerability was discovered in Movable Type. This vulnerability allows unauthenticated attackers to execute SQL code on the server...

7.5CVSS5.6AI score0.01989EPSS
Exploits0
Rows per page
Query Builder