CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Remote command execution vulnerability in Skybluecanvas Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

6.8CVSS1AI score0.77837EPSS

Exploits6

seebug.org•added 2014/07/01 12:0 a.m.•14 views

SkyBlueCanvas CMS 1.1 r248-03 - Remote Command Execution

No description provided by source. Vulnerability in SkyBlueCanvas CMS Vulnerability Type: Remote Command Injection Version Affected: 1.1 r248-03 and probably prior versions Discovered by: Scott Parish - Center for Internet Security Vendor Information: SkyBlueCanvas is an easy-to-use Web Content...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

SkyBlueCanvas CMS - Remote Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Skybluecanvas 1.1-r248 - Cross Site Request Forgery Vulnirability

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 1 +Exploit Title: Skybluecanvas.v1.1-r248 CSRF vulnirabilitie 0 0 +Date: 022/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: www.skybluecanvas.com 0 0...

7.1AI score

Exploits0

Check Point Advisories•added 2014/03/23 12:0 a.m.•3 views

SkyBlueCanvas CMS Remote Command Execution (CVE-2014-1683)

A remote code execution vulnerability has been reported in SkyBlueCanvas CMS. The vulnerability is due to the filebashMail function that allows remote attackers to execute arbitrary commands, when the pid parameter is 4. A remote attacker can exploit this vulnerability by execute arbitrary comman...

7.2AI score0.77837EPSS

Exploits6

seebug.org•added 2014/02/07 12:0 a.m.•44 views

Iconify SkyBlueCanvas‘index.php’远程命令注入漏洞

Bugtraq ID:65129 CVE:CVE-2014-1683 SkyBlueCanvas是Iconify公司的一套轻量级Web内容管理系统。该系统使用XML存储数据，并提供主题、附加组件、问题报告等功能。 Iconify SkyBlueCanvas中存在远程命令注入漏洞。攻击者可利用该漏洞在受影响应用程序上下文中执行任意命令，有助于发起进一步攻击。SkyBlueCanvas 1.1 r248-03版本中存在漏洞，其他版本也可能受到影响。 0 SkyBlueCanvas 1.1 r248-03 厂商补丁： Iconify -----...

6.8CVSS6.6AI score0.77837EPSS

Exploits6

Exploit DB•added 2014/02/05 12:0 a.m.•32 views

Skybluecanvas CMS - Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'SkyBlueCanvas CMS Remote Code Execution', 'Description' = %q This module exploits an arbitrary command execution vulnerability in...

6.8CVSS7.4AI score0.77837EPSS

Exploits6

0day.today•added 2014/02/04 12:0 a.m.•34 views

SkyBlueCanvas CMS Remote Code Execution Exploit

This Metasploit module exploits an arbitrary command execution vulnerability in SkyBlueCanvas CMS version 1.1 r248-03 and below. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3...

6.8CVSS0.5AI score0.77837EPSS

Exploits6

Packet Storm•added 2014/02/01 12:0 a.m.•30 views

SkyBlueCanvas CMS Remote Code Execution

6.8CVSS0.2AI score0.77837EPSS

Exploits6

Metasploit•added 2014/01/31 3:18 p.m.•27 views

SkyBlueCanvas CMS Remote Code Execution

This module exploits an arbitrary command execution vulnerability in SkyBlueCanvas CMS version 1.1 r248-03 and below. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SkyBlueCanvas CMS Remote Co...

6.8CVSS10AI score0.77837EPSS

Exploits6

NVD•added 2014/01/29 6:55 p.m.•13 views

CVE-2014-1683

The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in SkyBlueCanvas CMS before 1.1 r248-04, when the pid parameter is 4, allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 name, 2 email, 3 subject, or 4 message parameter to...

6.8CVSS7.5AI score0.77837EPSS

Exploits6References7

Prion•added 2014/01/29 6:55 p.m.•20 views

Code injection

6.8CVSS8.2AI score0.77837EPSS

Exploits6References7Affected Software1

Cvelist•added 2014/01/29 6:0 p.m.•18 views

CVE-2014-1683

7.5AI score0.77837EPSS

Exploits6References7

CVE•added 2014/01/29 6:0 p.m.•67 views

CVE-2014-1683

Vulnerability overview: CVE-2014-1683 affects SkyBlueCanvas CMS and its BashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php. When pid equals 4, remote attackers can inject commands via shell metacharacters in the name, email, subject, or message parameters to index.php...

6.8CVSS7.7AI score0.77837EPSS

Exploits6References7Affected Software1

Packet Storm•added 2014/01/25 12:0 a.m.•21 views

SkyBlueCanvas CMS 1.1 r248-03 Command Injection

Vulnerability in SkyBlueCanvas CMS Vulnerability Type: Remote Command Injection Version Affected: 1.1 r248-03 and probably prior versions Discovered by: Scott Parish - Center for Internet Security Vendor Information: SkyBlueCanvas is an easy-to-use Web Content Management System, that makes it...

7.4AI score

Exploits0

exploitpack•added 2014/01/24 12:0 a.m.•12 views

Skybluecanvas CMS 1.1 r248-03 - Remote Command Execution

Skybluecanvas CMS 1.1 r248-03 - Remote Command Execution Vulnerability in SkyBlueCanvas CMS Vulnerability Type: Remote Command Injection Version Affected: 1.1 r248-03 and probably prior versions Discovered by: Scott Parish - Center for Internet Security Vendor Information: SkyBlueCanvas is an...

Exploits0

Exploit DB•added 2014/01/24 12:0 a.m.•84 views

Skybluecanvas CMS 1.1 r248-03 - Remote Command Execution

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by