Vulnerability Details CVE-2016-0710
Multiple SQL injection vulnerabilities in the User Manager service in Apache Jetspeed before 2.3.1 allow remote attackers to execute arbitrary SQL commands via the (1) role or (2) user parameter to services/usermanager/users/.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.812
EPSS Ranking 99.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 7.5
References
- http://haxx.ml/post/140552592371/remote-code-execution-in-apache-jetspeed-230-and
- http://packetstormsecurity.com/files/136489/Apache-Jetspeed-Arbitrary-File-Upload.html
- http://www.rapid7.com/db/modules/exploit/multi/http/apache_jetspeed_file_upload
- https://mail-archives.apache.org/mod_mbox/portals-jetspeed-user/201603.mbox/%3C046318A1-226E-453F-9394-B84F1A33E6A4%40bluesunrise.com%3E
- https://portals.apache.org/jetspeed-2/security-reports.html#CVE-2016-0710
- https://www.exploit-db.com/exploits/39643/
- http://haxx.ml/post/140552592371/remote-code-execution-in-apache-jetspeed-230-and
- http://packetstormsecurity.com/files/136489/Apache-Jetspeed-Arbitrary-File-Upload.html
- http://www.rapid7.com/db/modules/exploit/multi/http/apache_jetspeed_file_upload
- https://mail-archives.apache.org/mod_mbox/portals-jetspeed-user/201603.mbox/%3C046318A1-226E-453F-9394-B84F1A33E6A4%40bluesunrise.com%3E
- https://portals.apache.org/jetspeed-2/security-reports.html#CVE-2016-0710
- https://www.exploit-db.com/exploits/39643/
Products affected by CVE-2016-0710
-
cpe:2.3:a:apache:jetspeed:2.2.0
-
cpe:2.3:a:apache:jetspeed:2.2.1
-
cpe:2.3:a:apache:jetspeed:2.2.2
-
cpe:2.3:a:apache:jetspeed:2.3.0