Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2018/02/05 12:0 a.m.41 views

Wonder CMS 2.3.1 Host Header Injection

Exploit Title: Wonder CMS 2.3.1 Host Header Injection Date: 30-01-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://www.wondercms.com/ Version: 2.3.1 CVE : CVE-2017-14523 Category: Webapp CMS 1...

7.5AI score0.08196EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/02/05 12:0 a.m.48 views

Wonder CMS 2.3.1 - 'Host' Header Injection

Exploit Title: Wonder CMS 2.3.1 Host Header Injection Date: 30-01-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://www.wondercms.com/ Version: 2.3.1 CVE : CVE-2017-14523 Category: Webapp CMS 1...

7.5CVSS7.6AI score0.08196EPSS
Exploits5
OSV
OSV
added 2018/01/26 8:29 p.m.5 views

CVE-2017-14523

WonderCMS 2.3.1 is vulnerable to an HTTP Host header injection attack. It uses user-entered values to redirect pages. NOTE: the vendor reports that exploitation is unlikely because the attack can only come from a local machine or from the administrator as a self attack...

7.5CVSS7.5AI score
Exploits0References2
CVE
CVE
added 2018/01/26 8:0 p.m.63 views

CVE-2017-14523

WonderCMS 2.3.1 is vulnerable to an HTTP Host header injection that allows host header manipulation to redirect pages. The CVE entry notes exploitation is unlikely because the attack would originate from a local machine or an administrator (self-attack). Public exploit references (Exploit-DB/Pack...

7.5CVSS7.5AI score0.08196EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder