Sphider Plus

sphider-plus

4 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2014-5086 3Sphider Sphider PlusSphiderpro 3Sphider Sphider PlusSphider Pro Nov 21, 2024 Feb 10, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A Command Execution vulnerability exists in Sphider Pro, and Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5086 pertains...Show more A Command Execution vulnerability exists in Sphider Pro, and Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5086 pertains to instances of fwrite in Sphider Pro and Sphider Plus only, but don’t exist in Sphider.Show less
CVE-2014-5085 1Sphider Plus 1Sphider Plus Nov 21, 2024 Feb 10, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A Command Execution vulnerability exists in Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5085 pertains to instances of...Show more A Command Execution vulnerability exists in Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5085 pertains to instances of fwrite in Sphider Plus, but do not exist in either Sphider or Sphider Pro.Show less
CVE-2014-5087 3Sphider Sphider PlusSphiderpro 3Sphider Sphider PlusSphider Pro Nov 21, 2024 Feb 7, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
CVE-2014-5081 3Sphider Sphider PlusSphiderpro 3Sphider Sphider PlusSphider Pro Nov 21, 2024 Jan 10, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 sphider prior to 1.3.6, sphider-pro prior to 3.2, and sphider-plus prior to 3.2 allow authentication bypass