Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

status2k status2k - vulnerabilities and exploits

Cross-site scripting (XSS) vulnerability in Status2k allows remote malicious users to inject arbitrary web script or HTML via the username to login.php.

Status2k Status2k -

1 EDB exploit

7.5

CVSSv2

SQL injection vulnerability in admin/options/logs.php in Status2k allows remote authenticated administrators to execute arbitrary SQL commands via the log parameter.

Status2k Status2k -

1 EDB exploit

9.8

CVSSv3

A vulnerability exits in Status2K 2.5 Server Monitoring Software via the multies parameter to includes/functions.php, which could let a malicious user execute arbitrary PHP code.

Status2k Status2k

1 EDB exploit

9.8

CVSSv3

Status2k does not remove the install directory allowing credential reset.

Status2k Status2k

1 EDB exploit

6.5

CVSSv2

admin/options/logs.php in Status2k allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the Location field in Add Logs in the Admin Panel.

Status2k Status2k -

1 EDB exploit

8.8

CVSSv3

Status2k allows Remote Command Execution in admin/options/editpl.php.

Status2k Status2k

1 EDB exploit

5

CVSSv2

Status2k allows remote malicious users to obtain configuration information via a phpinfo action in a request to status/index.php, which calls the phpinfo function.

Status2k Status2k -

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

status2k status2k - vulnerabilities and exploits

CVE-2014-5088

CVE-2014-5089

CVE-2014-5091

CVE-2014-5093

CVE-2014-5090

CVE-2014-5092

CVE-2014-5094

Vulmon Search

About

Products

Connect