U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2014-9567

Change History

Modified Analysis 1/08/2015 2:19:43 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:projectsend:projectsend:100:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:102:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:105:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:110:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:155:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:156:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:157:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:161:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:180:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:335:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:375:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:405:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:412:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:514:*:*:*:*:*:*:*
          *cpe:2.3:a:projectsend:projectsend:561:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CWE

								
							
							
						
CWE-94
Changed Reference Type
http://packetstormsecurity.com/files/129759/ProjectSend-Arbitrary-File-Upload.html No Types Assigned
http://packetstormsecurity.com/files/129759/ProjectSend-Arbitrary-File-Upload.html Exploit
Changed Reference Type
http://www.exploit-db.com/exploits/35424 No Types Assigned
http://www.exploit-db.com/exploits/35424 Exploit
Changed Reference Type
http://www.exploit-db.com/exploits/35660 No Types Assigned
http://www.exploit-db.com/exploits/35660 Exploit