CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-5094

Status2k allows remote attackers to obtain configuration information via a phpinfo action in a request to status/index.php, which calls the phpinfo function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.071

EPSS Ranking 91.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://packetstormsecurity.com/files/127719/Status2k-XSS-SQL-Injection-Command-Execution.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/95114
http://packetstormsecurity.com/files/127719/Status2k-XSS-SQL-Injection-Command-Execution.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/95114

Products affected by CVE-2014-5094

Status2k » Status2k » Version: N/A

cpe:2.3:a:status2k:status2k:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-5094

Products

Pricing

Contact Us