Oxid Vulnérabilités

Chronologie

Taper

Not Defined	17

Produit

Oxid eShop	6
Oxid eShop Community Edition	4
Oxid eShop Professional Edition	4
Oxid eShop Enterprise Edition	3
Oxid-esales eShop	2

Contre-mesures

Official Fix	14
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	3

Exploitabilité

High	1
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	14

Vecteur d'accès

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	17

Authentification

Not Defined	0
High	1
Low	2
None	14

Interaction de l'utilisateur

Not Defined	0
Required	3
None	14

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	3
≤6	2
≤7	5
≤8	4
≤9	1
≤10	1

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	1
≤5	3
≤6	2
≤7	7
≤8	2
≤9	1
≤10	1

VulDB

≤1	0
≤2	0
≤3	1
≤4	1
≤5	2
≤6	6
≤7	1
≤8	5
≤9	0
≤10	1

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	3
≤7	1
≤8	3
≤9	3
≤10	1

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	2
<2k	6
<5k	9
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	17
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (7): Cain And Abel (2), eSales (1), eShop (9), eShop Community Edition (4), eShop Enterprise Editio (1), eShop Enterprise Edition (3), eShop Professional Edition (4)

Publié	Base	Temp	Vulnérabilité	Prod	Exp	Con	EPSS	CTI	CVE
02/08/2023	4.0	3.9	OXID eShop Enterprise Editio Administration Area elévation de privilèges	Inconnue	Not Defined	Official Fix	0.00046	0.00	CVE-2023-38330
05/11/2019	7.1	6.8	Oxid eShop Admin Panel authentification faible	Inconnue	Not Defined	Official Fix	0.00220	0.00	CVE-2019-17062
15/01/2019	8.5	8.5	Oxid eSales DB Abstraction Layer oxconfig.php getRequestParameter sql injection	Inconnue	Not Defined	Not Defined	0.00138	0.02	CVE-2018-20715
20/08/2018	6.8	6.5	Oxid eShop Enterprise Edition Password Reset elévation de privilèges	Inconnue	Not Defined	Official Fix	0.00244	0.02	CVE-2018-12579
20/02/2018	6.4	6.1	Oxid eShop Community Edition/eShop Professional Edition dénie de service	Inconnue	Not Defined	Official Fix	0.00204	0.00	CVE-2017-14993
20/02/2018	6.4	6.1	Oxid eShop Community Edition/eShop Professional Edition cross site request forgery	Inconnue	Not Defined	Official Fix	0.00175	0.00	CVE-2017-12415
19/02/2018	4.8	4.6	Oxid eShop Enterprise Edition URL elévation de privilèges	Inconnue	Not Defined	Official Fix	0.00105	0.00	CVE-2018-5763
19/01/2018	7.4	7.1	Oxid eShop OpenID Single Sign-On authentification faible	Inconnue	Not Defined	Official Fix	0.00179	0.00	CVE-2015-6926
19/01/2018	6.4	6.1	Oxid eShop elévation de privilèges	Inconnue	Not Defined	Official Fix	0.00162	0.00	CVE-2014-4919
18/01/2018	6.7	6.1	Oxid eShop elévation de privilèges	Inconnue	Proof-of-Concept	Official Fix	0.00135	0.00	CVE-2014-2017

7 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 7 results.

◂ PrécédentAperçuSuivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!