CNNVD-202507-3903 Information

Jul 31, 2025 cve

CNNVD ID

CNNVD-202507-3903

CVE-2013-10037

CNNVD Published: 2025-07-31

Description (Chinese)

Eppler Software WebTester是Eppler Software公司的一款在线考试与测验平台。 Eppler Software WebTester 5.x版本存在安全漏洞，该漏洞源于install2.php脚本未清理用户输入，可能导致远程命令执行。

Description (English)

Eppler Software WebTester is an online examination and test platform for Eppler Software. Eppler Software WebTester version 5.x contains a security loophole, which stems from the fact that install2.php script does not clear user input and may result in remote command execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Eppler Software

Published

2025-07-31

Last Modified

2026-02-24

References

https://advisories.checkpoint.com/defense/advisories/public/2014/cpai-2014-1620.html https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/webtester_exec.rb https://sourceforge.net/p/webtesteronline/bugs/3/ https://www.exploit-db.com/exploits/29132 https://www.vulncheck.com/advisories/webtester-unauth-command-execution

Share on: