CVE-2014-5085
- EPSS 6.69%
- Veröffentlicht 10.02.2020 15:15:19
- Zuletzt bearbeitet 21.11.2024 02:11:23
A Command Execution vulnerability exists in Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5085 pertains to instances of fwrite in Sphider Plus, but do...
CVE-2014-5086
- EPSS 6.7%
- Veröffentlicht 10.02.2020 15:15:19
- Zuletzt bearbeitet 21.11.2024 02:11:23
A Command Execution vulnerability exists in Sphider Pro, and Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5086 pertains to instances of fwrite in Sph...
CVE-2014-5087
- EPSS 15.84%
- Veröffentlicht 07.02.2020 18:15:10
- Zuletzt bearbeitet 21.11.2024 02:11:23
A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
CVE-2014-5081
- EPSS 6.84%
- Veröffentlicht 10.01.2020 13:15:13
- Zuletzt bearbeitet 21.11.2024 02:11:22
sphider prior to 1.3.6, sphider-pro prior to 3.2, and sphider-plus prior to 3.2 allow authentication bypass