Command Execution Vulnerability in Sphider before 1.3.6: Insufficient Sanitization of fwrite in conf.php (CVE-2014-5083)

Command Execution Vulnerability in Sphider before 1.3.6: Insufficient Sanitization of fwrite in conf.php (CVE-2014-5083)

CVE-2014-5083 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A Command Execution vulnerability exists in Sphider before 1.3.6 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5083 pertains to instances of fwrite in Sphider.

Learn more about our User Device Pen Test.