CVE-2014-2043
published 2014-03-13CVE-2014-2043: SQL injection vulnerability in Resources/System/Templates/Data.aspx in Procentia IntelliPen before 1.1.18.1658 allows remote authenticated users to execute…
PriorityP339medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EXPLOIT
EPSS
1.18%
63.8th percentile
SQL injection vulnerability in Resources/System/Templates/Data.aspx in Procentia IntelliPen before 1.1.18.1658 allows remote authenticated users to execute arbitrary SQL commands via the value parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| procentia | intellipen | <= 1.1.12.1520 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Procentia IntelliPen 1.1.12.1520 Value sql injection (EDB-32212)
vuldb·2026-05-07·CVSS 6.5
CVE-2014-2043 [MEDIUM] Procentia IntelliPen 1.1.12.1520 Value sql injection (EDB-32212)
A vulnerability, which was classified as critical, was found in Procentia IntelliPen 1.1.12.1520. This impacts an unknown function. Such manipulation of the argument Value leads to sql injection.
This vulnerability is traded as CVE-2014-2043. The attack may be launched remotely. Furthermore, there is an exploit available.
You should upgrade the affected component.
GHSA
GHSA-56x3-5r55-c4h6: SQL injection vulnerability in Resources/System/Templates/Data
ghsa_unreviewed·2022-05-14
CVE-2014-2043 [MEDIUM] CWE-89 GHSA-56x3-5r55-c4h6: SQL injection vulnerability in Resources/System/Templates/Data
SQL injection vulnerability in Resources/System/Templates/Data.aspx in Procentia IntelliPen before 1.1.18.1658 allows remote authenticated users to execute arbitrary SQL commands via the value parameter.
No detection rules found.
No writeups or analysis indexed.
http://seclists.org/fulldisclosure/2014/Mar/103http://www.exploit-db.com/exploits/32212http://www.securityfocus.com/archive/1/531426/100/0/threadedhttps://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2043http://seclists.org/fulldisclosure/2014/Mar/103http://www.exploit-db.com/exploits/32212http://www.securityfocus.com/archive/1/531426/100/0/threadedhttps://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2043
2014-03-13
Published