CyberSec.Space Logo
返回 CVE 浏览器

CVE-2017-1000060

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile44.97th
Published2017年7月17日
Last Modified2026年5月13日

Vulnerability Description

EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root

Affected Platforms (CPE)

📦
Eyesofnetwork

Eyesofnetwork

= 5.1-0

References & Advisories

🔗 https://rioru.github.io/pentest/web/2017/03/28/from-unauthenticated-to-root-supervision.html
🔗 https://rioru.github.io/pentest/web/2017/03/28/from-unauthenticated-to-root-supervision.html

相关漏洞威胁

CVE-2017-142529.8

SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) 5.1-0 via the group_id cookie to side.php.

CVE-2017-144039.8

The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the term parameter to module/admin_group/search.php.

CVE-2017-142479.8

SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) 5.1-0 via the user_id cookie to header.php, a related issue t...

CVE-2017-144029.8

The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter to module/admin_user/add_modify_u...