Status2k does not remove the install directory allowing credential reset.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/127719/Status2k-XSS-SQL-Injection-Command-Execution.html | Exploit Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/95113 | VDB Entry |
Configurations
History
No history.
Information
Published : 2020-01-10 14:15
Updated : 2024-02-04 20:39
NVD link : CVE-2014-5093
Mitre link : CVE-2014-5093
CVE.ORG link : CVE-2014-5093
JSON object : View
Products Affected
status2k
- status2k
CWE
CWE-522
Insufficiently Protected Credentials