Wonder Schwachstellen

Zeitverlauf

Typ

Content Management System	9
Project Management Software	1

Produkt

Wonder CMS	9
Project Wonder WebObjects	1

Massnahmen

Official Fix	1
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	9

Ausnutzbarkeit

High	0
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	8

Zugriffsart

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	10

Authentisierung

Not Defined	0
High	0
Low	3
None	7

Benutzeraktivität

Not Defined	0
Required	5
None	5

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	3
≤7	2
≤8	1
≤9	2
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	3
≤7	2
≤8	1
≤9	2
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	2
≤5	2
≤6	2
≤7	3
≤8	1
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	1
≤7	4
≤8	2
≤9	1
≤10	2

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	3
<2k	4
<5k	3
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	10
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (2): CMS (9), WebObjects (1)

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
07.11.2023	4.8	4.8	Wonder CMS installModule Cross Site Scripting	Content Management System	Not Defined	Not Defined	0.00080	0.00	CVE-2023-41425
15.09.2022	4.8	4.7	Project Wonder WebObjects HTTP Header Cross Site Scripting	Project Management Software	Not Defined	Official Fix	0.00058	0.00	CVE-2022-37724
26.01.2018	6.9	6.5	Wonder CMS HTTP Host Header erweiterte Rechte	Content Management System	Proof-of-Concept	Not Defined	0.02122	0.00	CVE-2017-14523
26.01.2018	5.2	5.2	Wonder CMS Input Field Cross Site Scripting	Content Management System	Not Defined	Not Defined	0.00113	0.00	CVE-2017-14522
26.01.2018	7.5	7.1	Wonder CMS File Upload erweiterte Rechte	Content Management System	Proof-of-Concept	Not Defined	0.00801	0.00	CVE-2017-14521
17.03.2017	8.5	8.5	Wonder CMS editInplace.php Remote File Inclusion erweiterte Rechte	Content Management System	Not Defined	Not Defined	0.00476	0.00	CVE-2014-8705
17.03.2017	8.1	8.1	Wonder CMS Theme index.php Directory Traversal	Content Management System	Not Defined	Not Defined	0.00490	0.00	CVE-2014-8704
17.03.2017	5.2	5.2	Wonder CMS Cross Site Scripting	Content Management System	Not Defined	Not Defined	0.00147	0.00	CVE-2014-8703
17.03.2017	5.3	5.3	Wonder CMS Error Message Path Information Disclosure	Content Management System	Not Defined	Not Defined	0.00330	0.01	CVE-2014-8702
17.03.2017	6.4	6.4	Wonder CMS password Password Hash Information Disclosure	Content Management System	Not Defined	Not Defined	0.00629	0.00	CVE-2014-8701

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!