CVE-2014-1691 in Groupwareالمعلومات

الملخص

بحسب MITRE

The framework/Util/lib/Horde/Variables.php script in the Util library in Horde before 5.1.1 allows remote attackers to conduct object injection attacks and execute arbitrary PHP code via a crafted serialized object in the _formvars form.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

28/01/2014

إفشاء

01/04/2014

الاعتدال

تمت الموافقة

إدخال

VDB-12132

استغلال

تحميل

EPSS

0.42895

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!