NVD

Id
31041  
Name
CVE-2014-2654  
Description
Multiple SQL injection vulnerabilities in MobFox mAdserve 2.0 and earlier allow remote authenticated users to execute arbitrary SQL commands via the id parameter to (1) edit_ad_unit.php, (2) view_adunits.php, or (3) edit_campaign.php in www/cp/.  
Reject
 
CVSS Version
2  
CVSS Score
6.5  
Severity
Medium  
CVSS Base Score
6.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2014-04-22  
Modified Date
2014-04-23  
Seq
2014-2654  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
163083 31041 CVE-2014-2654 20140416 SQL Injection in mAdserve  View
163084 31041 CVE-2014-2654 66661  View
163085 31041 CVE-2014-2654 madserve-cve20142654-sql-injection(92545)  View
163086 31041 CVE-2014-2654 https://www.htbridge.com/advisory/HTB23209  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
13342 JVNDB-2014-002217 MobFox mAdserve における SQL インジェクションの脆弱性 MobFox mAdserve には、SQL インジェクションの脆弱性が存在します。 CVE-2014-2654 69941 CVE-2014-2654 31041 6.5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-002217.html 2014-03-26 2014-04-24 View