Webedition Cms@* Security Vulnerabilities and Issues — Webedition Cms@* CVE List

Lucene search

WebeditionWebedition Cms*

2 matches found

CVE•added 2014/11/06 6:55 p.m.•46 views

CVE-2014-5258

Directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.

4CVSS6.1AI score0.83495EPSS

CVE•added 2018/07/19 5:29 p.m.•33 views

CVE-2014-2302

The installer script in webEdition CMS before 6.2.7-s1 and 6.3.x before 6.3.8-s1 allows remote attackers to conduct PHP Object Injection attacks by intercepting a request to update.webedition.org.

9.8CVSS9.4AI score0.15675EPSS