CVE-2014-5521
published 2014-09-02CVE-2014-5521: plugins/useradmin/fingeruser.php in XRMS CRM, possibly 1.99.2, allows remote authenticated users to execute arbitrary code via shell metacharacters in the…
PriorityP348medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EXPLOIT
EPSS
7.07%
93.4th percentile
plugins/useradmin/fingeruser.php in XRMS CRM, possibly 1.99.2, allows remote authenticated users to execute arbitrary code via shell metacharacters in the username parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xrms_crm_project | xrms_crm | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET EXPLOIT Netgear passwordrecovered.cgi attempt
suricata·2014-01-15
CVE-2017-5521 ET EXPLOIT Netgear passwordrecovered.cgi attempt
ET EXPLOIT Netgear passwordrecovered.cgi attempt
Rule: alert http any any -> any any (msg:"ET EXPLOIT Netgear passwordrecovered.cgi attempt"; flow:established,to_server; http.method; content:"POST"; nocase; http.uri; content:"/passwordrecovered.cgi?id="; nocase; reference:url,www.securityfocus.com/archive/1/530743/30/0/threaded; reference:url,www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2017-003/?fid=8911; reference:cve,2017-5521; classtype:attempted-admin; sid:2017969; rev:6; metadata:created_at 2014_01_15, cve CVE_2017_5521, signature_severity Major, updated_at 2024_03_06;)
No writeups or analysis indexed.
http://packetstormsecurity.com/files/128030/XRMS-Blind-SQL-Injection-Command-Execution.htmlhttp://seclists.org/fulldisclosure/2014/Aug/78http://www.exploit-db.com/exploits/34452http://www.openwall.com/lists/oss-security/2014/08/27/4http://www.openwall.com/lists/oss-security/2014/08/29/1http://packetstormsecurity.com/files/128030/XRMS-Blind-SQL-Injection-Command-Execution.htmlhttp://seclists.org/fulldisclosure/2014/Aug/78http://www.exploit-db.com/exploits/34452http://www.openwall.com/lists/oss-security/2014/08/27/4http://www.openwall.com/lists/oss-security/2014/08/29/1
2014-09-02
Published