← back
CVE-2013-4983

CVE-2013-4983

60Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 90%
from disclosure to weapon0 days
Published on NVDSep 10
1st PoCSep 9
metasploitSep 6
exploitation probability
90%top 1% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
The get_referers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain parameter to end-user/index.php.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.