Lucene search
Ubuntu.comUB:CVE-2014-9057HistoryDec 16, 2014 - 12:00 a.m.
CVE-2014-9057
2014-12-1600:00:00
ubuntu.com
ubuntu.com
9
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
44.7%
SQL injection vulnerability in the XML-RPC interface in Movable Type before
5.18, 5.2.x before 5.2.11, and 6.x before 6.0.6 allows remote attackers to
execute arbitrary SQL commands via unspecified vectors.
References
Related
checkpoint_advisories
checkpoint_advisories
MovableType Unsanitized Input SQL Injection (CVE-2014-9057)
2014-12-03 00:00:00
openvas
openvas
Movable Type SQL Injection Vulnerability
2015-05-27 00:00:00
Debian: Security Advisory (DSA-3183-1)
2015-03-11 00:00:00
prion
prion
Sql injection
2014-12-16 18:59:00
cve
cve
CVE-2014-9057
2014-12-16 18:59:00
osv
osv
movabletype-opensource - security update
2015-03-12 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3183-1] movabletype-opensource security update
2015-03-23 00:00:00
debian
debian
[SECURITY] [DSA 3183-1] movabletype-opensource security update
2015-03-12 15:22:32
[SECURITY] [DSA 3183-1] movabletype-opensource security update
2015-03-12 15:22:32
nessus
nessus
Debian DSA-3183-1 : movabletype-opensource - security update
2015-03-13 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
44.7%
Related for UB:CVE-2014-9057