Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

sphider sphider vulnerabilities and exploits

Static code injection vulnerability in admin/admin.php in Sphider 1.3.6 allows remote authenticated users to inject arbitrary PHP code into settings/conf.php via the _word_upper_bound parameter.

Sphider Sphider 1.3.6

1 EDB exploit

7.5

CVSSv2

SQL injection vulnerability in admin/admin.php in Sphider 1.3.6 allows remote malicious users to execute arbitrary SQL commands via the filter parameter.

Sphider Sphider 1.3.6

1 EDB exploit

4.3

CVSSv2

Cross-site scripting (XSS) vulnerability in admin/admin.php in Sphider 1.3.6 allows remote malicious users to inject arbitrary web script or HTML via the category parameter. NOTE: the url parameter vector is already covered by CVE-2014-5082.

Sphider Sphider 1.3.6

1 EDB exploit

2.6

CVSSv2

Cross-site scripting (XSS) vulnerability in search.php in Sphider 1.3.4, when the search suggestion feature is enabled, allows remote malicious users to inject arbitrary web script or HTML via the query parameter, a different vector than CVE-2006-2506.

Sphider Sphider 1.3.4

1 EDB exploit

8.8

CVSSv3

A Command Execution vulnerability exists in Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5085 pertains to instances of fwrite in Sphider Plus, but do not exist in either Sphider o...

Sphider-plus Sphider-plus 3.2

1 EDB exploit

8.8

CVSSv3

A Command Execution vulnerability exists in Sphider Pro 3.2 due to insufficient sanitization of fwrite, which could let a remote malicious user execute arbitrary code. CVE-2014-5084 pertains to instances of fwrite in Sphider Pro only, but do not exist in either Sphider or Sphider...

Sphiderpro Sphider Pro 3.2

1 EDB exploit

6

CVSSv2

SQL injection vulnerability in models/log.php in the Search Log (com_searchlog) component 3.1.0 for Joomla! allows remote authenticated users, with Public Back-end privileges, to execute arbitrary SQL commands via the search parameter in a log action to administrator/index.php. N...

Kanich Com Searchlog 3.1.0

2 EDB exploits

Get Started

« PREV 1 2

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

sphider sphider vulnerabilities and exploits

CVE-2014-5194

CVE-2014-5192

CVE-2014-5193

CVE-2008-5211

CVE-2014-5085

CVE-2014-5084

CVE-2010-5044

Vulmon Search

About

Products

Connect