Vulnerability CVE-2014-8949

Vulnerability CVE-2014-8949

Published: 2014-11-16

Description:

Type:

(Improper Control of Generation of Code ('Code Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
6/10	6.4/10	6.8/10

Affected software
Imember360 -> Imember360

http://www.exploit-db.com/exploits/33076

http://secunia.com/advisories/58094

http://seclists.org/fulldisclosure/2014/Apr/265

http://packetstormsecurity.com/files/126324/WordPress-iMember360is-3.9.001-XSS-Disclosure-Code-Execution.html

http://osvdb.org/show/osvdb/106301