CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14231

GeniXCMS before 1.1.0 allows remote attackers to cause a denial of service (account blockage) by leveraging the mishandling of certain username substring relationships, such as the admin<script> username versus the admin username, related to register.php, User.class.php, and Type.class.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.5%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2017-14231

Genixcms » Genixcms » Version: 0.0.1

cpe:2.3:a:genixcms:genixcms:0.0.1
Genixcms » Genixcms » Version: 0.0.2

cpe:2.3:a:genixcms:genixcms:0.0.2
Genixcms » Genixcms » Version: 0.0.3

cpe:2.3:a:genixcms:genixcms:0.0.3
Genixcms » Genixcms » Version: 0.0.4

cpe:2.3:a:genixcms:genixcms:0.0.4
Genixcms » Genixcms » Version: 0.0.5

cpe:2.3:a:genixcms:genixcms:0.0.5
Genixcms » Genixcms » Version: 0.0.6

cpe:2.3:a:genixcms:genixcms:0.0.6
Genixcms » Genixcms » Version: 0.0.7

cpe:2.3:a:genixcms:genixcms:0.0.7
Genixcms » Genixcms » Version: 0.0.8

cpe:2.3:a:genixcms:genixcms:0.0.8
Genixcms » Genixcms » Version: 1.0.0

cpe:2.3:a:genixcms:genixcms:1.0.0
Genixcms » Genixcms » Version: 1.0.1

cpe:2.3:a:genixcms:genixcms:1.0.1
Genixcms » Genixcms » Version: 1.0.2

cpe:2.3:a:genixcms:genixcms:1.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14231

Products

Pricing

Contact Us