Shodan
Vulnerabilities
Vulnerable Software
Esri:  >> Arcgis Server  >> 10.2  Security Vulnerabilities
CVE-2013-7231
Cross-site scripting (XSS) vulnerability in the Mobile Content Server in ESRI ArcGIS for Server 10.1 and 10.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-5222.
CVSS Score
3.5
EPSS Score
0.002
Published
2013-12-30
CVE-2013-7232
SQL injection vulnerability in ESRI ArcGIS for Server through 10.2 allows remote attackers to execute arbitrary SQL commands via unspecified input to the map or feature service.
CVSS Score
7.5
EPSS Score
0.005
Published
2013-12-30
CVE-2013-5221
The mobile-upload feature in Esri ArcGIS for Server 10.1 through 10.2 allows remote authenticated users to upload .exe files by leveraging (1) publisher or (2) administrator privileges.
CVSS Score
3.5
EPSS Score
0.002
Published
2013-09-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved