CVE-2014-125049 in Blogileinfo

Zusammenfassung

von MITRE • 06.01.2023

** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in typcn Blogile. Affected is the function getNav of the file server.js. The manipulation of the argument query leads to sql injection. The name of the patch is cfec31043b562ffefe29fe01af6d3c5ed1bf8f7d. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217560. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Reservieren

06.01.2023

Veröffentlichung

06.01.2023

Moderieren

akzeptiert

Eintrag

VDB-217560

CPE

bereit

CWE

CWE-89 (bestätigt)

CVSS

9.8 (NVD)

EPSS

0.00289

KEV

nein

Aktivitäten

very low

Sektor

Education

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-125049
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-125049
CVE Details	https://www.cvedetails.com/cve/CVE-2014-125049/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!