CVE-2014-5082 in Sphider
摘要 (英语)
Multiple SQL injection vulnerabilities in admin/admin.php in Sphider 1.3.6 and earlier, Sphider Pro, and Sphider-plus allow remote attackers to execute arbitrary SQL commands via the (1) site_id or (2) url parameter.
预定
2014-07-24
披露
2014-08-06
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 70538 | Sphider SQL注入 | 89 | 概念验证 | 未定义 | CVE-2014-5082 |