VDB

GCVE-110-MAGEIA-2014-116

GCVE-110-MAGEIA-2014-116
Advisory Published
Vulnetix · Advisory published March 3, 2014
eGroupware prior to 1.8.006.20140217 is vulnerable to remote file deletion and possible remote code execution due to user input being passed to PHP's unserialize() method (CVE-2014-2027).

Affected Products

VendorProductVersionsPlatforms
Mageiaegroupware0 (affected), 1.8.006.20140217-1.mga3 (unaffected), 1.8.006.20140217-1.mga3 (unaffected), 0 (affected)
Mageiaegroupware1.8.006.20140217-1.mga4 (unaffected), 0 (affected), 1.8.006.20140217-1.mga4 (unaffected), 0 (affected)
Mageiaplasma-applet-eventlist0.6.97-1.mga4 (unaffected), 0 (affected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›