CVE-2014-9464 in Microweberinfo

Summary

SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.

Reservation

01/03/2015

Disclosure

01/03/2015

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
73490Microweber Category.php sql injection89Proof-of-ConceptOfficial fixCVE-2014-9464

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!