A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
Max CVSS
9.8
EPSS Score
2.13%
Published
2020-02-07
Updated
2021-08-16
sphider prior to 1.3.6, sphider-pro prior to 3.2, and sphider-plus prior to 3.2 allow authentication bypass
Max CVSS
9.8
EPSS Score
4.38%
Published
2020-01-10
Updated
2021-08-16
2 vulnerabilities found