Lucene search
Veracode Vulnerability DatabaseVERACODE:3292HistoryJan 16, 2017 - 2:43 a.m.
Remote Web Code Execution
2017-01-1602:43:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
43.5%
b2evolution is vulnerable to remote code execution vulnerabilities. It allows remote authenticated users to inject arbitrary web script or HTML via a .swf file in a comment frame or avatar frame of the file types table.
| CPE | Name | Operator | Version |
|---|---|---|---|
| b2evolution | le | 6.7.9 | |
| b2evolution | le | 6.8.3 |
Related
osv
osv
CVE-2017-5494
2017-01-15 22:59:00
cvelist
cvelist
CVE-2017-5494
2017-01-15 22:00:00
nvd
nvd
CVE-2017-5494
2017-01-15 22:59:00
cve
cve
CVE-2017-5494
2017-01-15 22:59:00
prion
prion
Cross site scripting
2017-01-15 22:59:00
openvas
openvas
b2evolution Multiple Vulnerabilities
2017-01-24 00:00:00