CVE-2014-7176
published 2014-11-04CVE-2014-7176: SQL injection vulnerability in Enalean Tuleap before 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter…
PriorityP340medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EXPLOIT
EPSS
2.20%
80.3th percentile
SQL injection vulnerability in Enalean Tuleap before 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter to plugins/docman.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| enalean | tuleap | <= 7.5 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Enalean Tuleap 7.4.99.5 - Blind SQL Injection
exploitdb·2014-10-28·CVSS 6.5
CVE-2014-7176 [MEDIUM] Enalean Tuleap 7.4.99.5 - Blind SQL Injection
Enalean Tuleap 7.4.99.5 - Blind SQL Injection
---
Vulnerability title: Tuleap &global_filtersubmit=Apply HTTP/1.1
Host: 192.168.56.108
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Firefox/31.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: https://192.168.56.108/plugins/docman/?group_id=100
Cookie: PHPSESSID=3pt0ombsmp0t9adujgrohv8mb6; TULEAP_session_hash=d51433e1f7c9b49079c0e5c511d64c96
Connection: keep-alive
Note: In order to exploit this vulnerability a attacker needs to be in position to access '/plugins/docman/' URN.
Further details at:
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-7176/
Copyright:
Copyri
Exploit-DB
Enalean Tuleap 7.2 - XML External Entity File Disclosure
exploitdb·2014-10-28·CVSS 4.0
CVE-2014-7177 [MEDIUM] Enalean Tuleap 7.2 - XML External Entity File Disclosure
Enalean Tuleap 7.2 - XML External Entity File Disclosure
---
Vulnerability title: Tuleap
]>
123&xxe;
e123&xxe;
123&xxe;
attachment
Attachments
details
Original Submission
A full description of the artifact&xxe;
summary
Summary
One line description of the artifact&xxe;
cc
CC
status_id
Status
Artifact Status
The artifact has been submitted&xxe;
The artifact is no longer active. See the Resolution field for details on how it was resolved.&xxe;
assigned_to
Assigned to
Who is in charge of solving the artifact&xxe;
category_id
Category
Generally correspond to high level modules or functionalities of your software (e.g. User interface, Configuration Manager, Scheduler, Memory Manager...)
severity
Priority
How quickly the artifact must be completed
No writeups or analysis indexed.
http://packetstormsecurity.com/files/128875/Tuleap-7.4.99.5-Blind-SQL-Injection.htmlhttp://seclists.org/fulldisclosure/2014/Oct/119http://www.exploit-db.com/exploits/35098http://www.securityfocus.com/bid/70773https://exchange.xforce.ibmcloud.com/vulnerabilities/98307https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-7176/https://www.tuleap.org/recent-vulnerabilitieshttp://packetstormsecurity.com/files/128875/Tuleap-7.4.99.5-Blind-SQL-Injection.htmlhttp://seclists.org/fulldisclosure/2014/Oct/119http://www.exploit-db.com/exploits/35098http://www.securityfocus.com/bid/70773https://exchange.xforce.ibmcloud.com/vulnerabilities/98307https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-7176/https://www.tuleap.org/recent-vulnerabilities
2014-11-04
Published