CVE-2014-125049 in Blogilethông tin

Tóm tắt

Bởi MITRE • 06/01/2023

** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in typcn Blogile. Affected is the function getNav of the file server.js. The manipulation of the argument query leads to sql injection. The name of the patch is cfec31043b562ffefe29fe01af6d3c5ed1bf8f7d. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217560. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulDB

Đặt trước

06/01/2023

Tiết lộ

06/01/2023

Kiểm duyệt

được chấp nhận

mục

VDB-217560

CPE

sẵn sàng

CWE

CWE-89 (Đã xác nhận)

CVSS

9.8 (NVD)

EPSS

0.00289

KEV

không

Các hoạt động

rất thấp

ngành

Education

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-125049
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-125049
CVE Details	https://www.cvedetails.com/cve/CVE-2014-125049/

◂ Trước Tổng Quan Tiếp theo ▸

Do you need the next level of professionalism?

Upgrade your account now!