← back
CVE-2014-5087

CVE-2014-5087

EPSS 7.2%
A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/127720/Sphider-Search-Engine-Command-Execution-SQL-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/34238unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/127720/Sphider-Search-Engine-Command-Execution-SQL-Injection.htmlhttps://vulmon.com/searchpage?page=2&q=Shayan+S