B2evolution Vulnerabilità

Sequenza temporale

Versione

4.1.34
6.7.04
6.7.14
6.7.24
6.7.34

Contromisure

Official Fix14
Temporary Fix0
Workaround0
Unavailable2
Not Defined12

Sfruttabilità

High0
Functional0
Proof-of-Concept6
Unproven2
Not Defined20

Accesso al vettore

Not Defined0
Physical0
Local2
Adjacent0
Network26

Autenticazione

Not Defined0
High0
Low16
None12

Interazione dell'utente

Not Defined0
Required14
None14

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤46
≤510
≤64
≤72
≤86
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤46
≤512
≤62
≤74
≤84
≤90
≤100

VulDB

≤10
≤20
≤30
≤412
≤54
≤66
≤72
≤84
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤52
≤62
≤72
≤82
≤92
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k10
<2k8
<5k10
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k28
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (48): 1.6, 1.8.2, 1.8.5, 1.8.6, 1.9, 1.9 Beta, 3.3.3, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.1.4, 4.1.5, 4.1.6, 6.7, 6.7.1, 6.7.2, 6.7.3, 6.7.4, 6.7.5, 6.7.6, 6.7.7, 6.7.8, 6.8, 6.8.1, 6.8.2, 6.8.3, 6.8.4, 6.8.4-stable, 6.8.5, 6.8.6, 6.8.7, 6.8.8, 6.8.9, 6.11, 6.11.1, 6.11.2, 6.11.3, 6.11.4, 6.11.5, 6.11.6, 6.11.6-stable, 7.2, 7.2.1, 7.2.2, 7.2.2-stable, 7.2.3, 7.2.5

Tipo di software: Content Management System

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
04/01/20235.95.9b2evolution escalazione di privilegi$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2022-44036
28/09/20223.73.7b2evolution Password Reset Token escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2022-30935
16/04/20213.13.1b2evolution evoadm.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-28242
10/02/20214.84.8b2evolution evoadm.php cross site scripting$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2020-22839
09/02/20214.14.1b2evolution Plugin Module cross site scripting$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2020-22841
09/02/20216.25.9b2evolution email_passthrough.php Redirect$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2020-22840
23/05/20198.58.5b2evolution Object call_plugin.php escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-8901
02/01/20188.58.3b2evolution Install escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-1000423
14/03/20176.36.3b2evolution File Upload admin.php escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2017-6902
23/01/20174.44.4b2evolution javascript URL _markdown.plugin.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-5553

18 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 18 results.

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!