Expressionengine Vulnerabilidades

Versão

7.2.0	2
7.2.1	2
7.2.2	2
7.2.3	2
7.2.4	2

Medidas

Official Fix	6
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	6

Explorabilidade

High	2
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	8

Tipo de acesso

Not Defined	0
Physical	0
Local	0
Adjacent	2
Network	10

Autenticação

Not Defined	0
High	0
Low	6
None	6

Actividade do utilizador

Not Defined	0
Required	6
None	6

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	6
≤6	0
≤7	0
≤8	6
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	6
≤6	0
≤7	2
≤8	4
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	2
≤5	4
≤6	2
≤7	2
≤8	2
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	0
≤8	2
≤9	4
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Fabricante

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explorar 0 dia

<1k	2
<2k	10
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explorar hoje

<1k	12
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (70): 1.2.1, 1.4.1, 1.6.4, 1.6.5, 1.6.6, 2, 2..5.4, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.2, 2.2.1, 2.2.2, 2.3, 2.3.1, 2.4, 2.5, 2.5.1, 2.5.2, 2.5.3, 2.5.5, 2.6, 2.6.1, 2.7, 2.7.1, 2.7.2, 2.7.3, 2.8, 2.8.1, 2.9, 2.11, 2.11.1, 2.11.2, 2.11.3, 2.11.4, 2.11.5, 2.11.6, 2.11.7, 3.4.2, 3.5, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 4.3, 4.3.1, 4.3.2, 4.3.3, 4.3.4, 5.0, 5.1, 5.2, 5.3, 5.3.1, 5.4, 5.4.1, 6, 6.0.1, 6.0.2, 7.2, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5

Publicado em	Base	Temp	Vulnerabilidade	0day	Hoje	Exp	Mas	CTI	CVE
09/02/2023	7.5	7.4	ExpressionEngine Control Panel Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-22953
18/02/2022	4.7	4.6	ExpressionEngine Control Panel Member Creation Injecção SQL	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-8242
16/03/2021	7.1	6.8	ExpressionEngine _lang.php save direitos alargados	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2021-27230
24/06/2020	7.5	7.2	ExpressionEngine direitos alargados	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2020-13443
01/10/2018	5.2	4.9	ExpressionEngine Reflected Roteiro Cruzado de Sítios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2018-17874
17/11/2017	4.4	4.4	EllisLab ExpressionEngine Roteiro Cruzado de Sítios	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2017-1000160
22/06/2017	7.4	7.4	ExpressionEngine Object Signing Token Generator Encriptação fraca	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2017-0897
04/11/2014	6.3	6.0	EllisLab ExpressionEngine Injecção SQL	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2014-5387
26/03/2009	4.3	4.1	ExpressionEngine Roteiro Cruzado de Sítios	$0-$5k	$0-$5k	High	Official Fix	0.00	CVE-2009-1070
09/01/2008	5.3	5.0	ExpressionEngine index.php direitos alargados	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0202

2 as entradas adicionais não são mais exibidas

🔒 Login Required

You need to signup and login to see more of the remaining 2 results.

◂ VoltarVisão GeralPróximo ▸

Interested in the pricing of exploits?

See the underground prices here!