CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-6985

SQL injection vulnerability in m_worklog/log_searchday.jsp in Enorth Webpublisher CMS, possibly 5.0 and earlier, allows remote attackers to execute arbitrary SQL commands via the thisday parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://seclists.org/fulldisclosure/2013/Dec/35
http://www.securityfocus.com/bid/64110
http://seclists.org/fulldisclosure/2013/Dec/35
http://www.securityfocus.com/bid/64110

Products affected by CVE-2013-6985

Enorth » Webpublisher Cms » Version: 5.0

cpe:2.3:a:enorth:webpublisher_cms:5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6985

Products

Pricing

Contact Us