1. Home
  2. Vulnerabilities
  3. CVE-2014-1216

CVE-2014-1216

CVSS v2.0 7.5 (High)
75% Progress
EPSS 6.08 % (94th)
6.08% Progress
Affected Products 1
Advisories 1
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

FitNesse Wiki 20131110, 20140201, and earlier allows remote attackers to execute arbitrary commands by defining a COMMAND_PATTERN and TEST_RUNNER in the pageContent parameter when editing a page.

Weaknesses
CWE-NVD-Other
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2014-04-22 13:06:28
(10 years ago)
Updated Date
2014-04-22 16:24:55
(10 years ago)

Affected Products

Fitnesse

Configuration #1

    CPE23 From Up To
  Fitnesse Wiki 20140201 and prior versions cpe:2.3:a:fitnesse:fitnesse_wiki <= 20140201
  Fitnesse Wiki 20131110 cpe:2.3:a:fitnesse:fitnesse_wiki:20131110