Vulnerability Description
A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This affects an unknown part of the file index.php. The manipulation of the argument p leads to file inclusion. It is possible to initiate the attack remotely. Upgrading to version 1.0.0 is able to address this issue. The patch is named 567bc33e6ed82b0d0179c9add707ac2b257aeaf2. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-217515.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wing-Tight Project | Wing-Tight | < 1.0.0 |
Related Weaknesses (CWE)
References
- https://github.com/soshtolsus/wing-tight/commit/567bc33e6ed82b0d0179c9add707ac2bPatchThird Party Advisory
- https://github.com/soshtolsus/wing-tight/releases/tag/1.0.0Release NotesThird Party Advisory
- https://vuldb.com/?ctiid.217515Third Party Advisory
- https://vuldb.com/?id.217515Permissions RequiredThird Party Advisory
- https://github.com/soshtolsus/wing-tight/commit/567bc33e6ed82b0d0179c9add707ac2bPatchThird Party Advisory
- https://github.com/soshtolsus/wing-tight/releases/tag/1.0.0Release NotesThird Party Advisory
- https://vuldb.com/?ctiid.217515Third Party Advisory
- https://vuldb.com/?id.217515Permissions RequiredThird Party Advisory
FAQ
What is CVE-2014-125044?
CVE-2014-125044 is a vulnerability with a CVSS score of 6.3 (MEDIUM). A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This affects an unknown part of the file index.php. The manipulation of the argument p leads to file inclusion. I...
How severe is CVE-2014-125044?
CVE-2014-125044 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-125044?
Check the references section above for vendor advisories and patch information. Affected products include: Wing-Tight Project Wing-Tight.