CVE-2014-0807
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2014-0807
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
data/class/pages/shopping/LC_Page_Shopping_Deliv.php in LOCKON EC-CUBE 2.4.4 and earlier, and 2.11.0 through 2.12.2, allows remote attackers to modify data via unspecified vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
LOCKON EC-CUBE 安全绕过漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
LOCKON EC-CUBE是日本LOCKON公司开发的一套开源的电子商务网站构建平台。该平台支持商品登录、用户评价、美工布局等。 LOCKON EC-CUBE 2.4.4及之前的版本和2.11.0至2.12.2版本中的data/class/pages/shopping/LC_Page_Shopping_Deliv.ph文件中存在安全绕过漏洞。远程攻击者可利用该漏洞修改数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2014-0807
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2014-0807
Please Login to view more intelligence information
- http://www.ec-cube.net/info/weakness/weakness.php?id=56x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2014-0807
Same Patch Batch · n/a · 2014-01-22 · 18 CVEs total
| CVE-2013-7305 | e107 信任管理漏洞 | |
| CVE-2014-0672 | Cisco MediaSense 权限许可和访问控制漏洞 | |
| CVE-2014-0671 | Cisco MediaSense 开放重定向漏洞 | |
| CVE-2014-0670 | Cisco MediaSense 跨站脚本漏洞 | |
| CVE-2014-0669 | Cisco ASR 5000 Series Gateway GPRS 权限许可和访问控制漏洞 | |
| CVE-2013-6746 | IBM FileNet P8 Platform Documentation Installable Info Center 跨站脚本漏洞 | |
| CVE-2013-6343 | ASUS RT-N56U和RT-AC66U 缓冲区溢出漏洞 | |
| CVE-2014-1637 | Command School Student Management System 信息泄露漏洞 | |
| CVE-2014-1636 | Command School Student Management System SQL注入漏洞 | |
| CVE-2014-0660 | Cisco TelePresence ISDN Gateway 拒绝服务漏洞 | |
| CVE-2013-7304 | Check Point Endpoint Security 加密问题漏洞 | |
| CVE-2013-2750 | E107 ‘content_preset.php’ 跨站脚本漏洞 | |
| CVE-2014-0806 | Sleipnir Mobile和Sleipnir Mobile应用程序信息泄露漏洞 | |
| CVE-2014-0677 | Cisco NX-OS Label Distribution Protocol功能拒绝服务漏洞 | |
| CVE-2014-0676 | Cisco NX-OS TACACS+ 权限许可和访问控制漏洞 | |
| CVE-2014-0662 | Cisco TelePresence VCS 拒绝服务漏洞 | |
| CVE-2014-0661 | Cisco TelePresence System 任意命令执行漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM
V. Comments for CVE-2014-0807
No comments yet