CVE-2014-1613

NONE EPSS 81.1%
Published May 16, 201412y ago · Modified Jun 17, 20262w ago
Find Similar
Published May 16, 2014 12y ago
Last Modified Jun 17, 2026 2w ago

Description

Dotclear before 2.6.2 allows remote attackers to execute arbitrary PHP code via a serialized object in the dc_passwd cookie to a password-protected page, which is not properly handled by (1) inc/public/lib.urlhandlers.php or (2) plugins/pages/_public.php.

Threat Intelligence

EPSS Exploit Probability
81.1% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-94 Improper Control of Generation of Code (Code Injection) Injection

Affected Products 35

VendorProductVersionRange
dotcleardotclear* ≤2.6.1
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0any
dotcleardotclear2.0.1any
dotcleardotclear2.0.2any
dotcleardotclear2.1any
dotcleardotclear2.1.1any
dotcleardotclear2.1.3any
dotcleardotclear2.1.4any
dotcleardotclear2.1.5any
dotcleardotclear2.1.6any
dotcleardotclear2.1.7any
dotcleardotclear2.2any
dotcleardotclear2.2.1any
dotcleardotclear2.2.2any
dotcleardotclear2.2.3any
dotcleardotclear2.3.0any
dotcleardotclear2.3.1any
dotcleardotclear2.4.2any
dotcleardotclear2.4.3any
dotcleardotclear2.4.4any
dotcleardotclear2.5.0any
dotcleardotclear2.5.1any
dotcleardotclear2.5.2any
dotcleardotclear2.5.3any
dotcleardotclear2.6any
dotcleardotclear2.6any

References 2

  • dotclear.org http://dotclear.org/blog/post/2014/01/20/Dotclear-2.6.2
    PatchVendor Advisory
  • labs.mwrinfosecurity.com https://labs.mwrinfosecurity.com/advisories/2014/05/14/dotclear-php-object-injection/
    Exploit

Remediation

  • dotclear.org http://dotclear.org/blog/post/2014/01/20/Dotclear-2.6.2
    PatchVendor Advisory