CVE-2014-4919
EUVD-2014-483819.01.2018, 15:29
OXID eShop Professional Edition before 4.7.13 and 4.8.x before 4.8.7, Enterprise Edition before 5.0.13 and 5.1.x before 5.1.7, and Community Edition before 4.7.13 and 4.8.x before 4.8.7 allow remote attackers to assign users to arbitrary dynamical user groups.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| oxid-esales | eshop | 𝑥 < 4.7.13 |
| oxid-esales | eshop | 4.8.0 ≤ 𝑥 < 4.8.7 |
| oxid-esales | eshop | 𝑥 < 5.0.13 |
| oxid-esales | eshop | 5.1.0 ≤ 𝑥 < 5.1.7 |
| oxid-esales | eshop | 𝑥 < 4.7.13 |
| oxid-esales | eshop | 4.8.0 ≤ 𝑥 < 4.8.7 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration