Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-1000235

I, Librarian version <=4.6 & 4.7 is vulnerable to OS Command Injection in batchimport.php resulting the web server being fully compromised.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.086
EPSS Ranking 92.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
Products affected by CVE-2017-1000235
  • None » None » Version:
    _librarian:-
  • None » None » Version:
    _librarian:3.0
  • None » None » Version:
    _librarian:3.1
  • None » None » Version:
    _librarian:3.2
  • None » None » Version:
    _librarian:3.2.1
  • None » None » Version:
    _librarian:3.3
  • None » None » Version:
    _librarian:3.4
  • None » None » Version:
    _librarian:3.4.1
  • None » None » Version:
    _librarian:3.5
  • None » None » Version:
    _librarian:4.0
  • None » None » Version:
    _librarian:4.1
  • None » None » Version:
    _librarian:4.2
  • None » None » Version:
    _librarian:4.3
  • None » None » Version:
    _librarian:4.4
  • None » None » Version:
    _librarian:4.5
  • None » None » Version:
    _librarian:4.6
  • None » None » Version:
    _librarian:4.7
  • Scilico » I » Version: Any
    cpe:2.3:a:scilico:i


Products
Pricing
Contact Us

Shodan ® - All rights reserved