CVE-2014-5086

HIGH

Sphider Pro and Sphider Plus < 3.2 - Remote Code Execution via fwrite to conf.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-5086.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Sphider Search Engine, including authentication bypass, SQL injection, and remote code execution via unsanitized input in configuration file writes. It provides functional PoC commands for each vulnerability.

Description

A Command Execution vulnerability exists in Sphider Pro, and Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5086 pertains to instances of fwrite in Sphider Pro and Sphider Plus only, but don’t exist in Sphider.

Exploits (1)

exploitdb WORKING POC
webappsphp
https://www.exploit-db.com/exploits/34238

The exploit demonstrates multiple vulnerabilities in Sphider Search Engine, including authentication bypass, SQL injection, and remote code execution via unsanitized input in configuration file writes. It provides functional PoC commands for each vulnerability.

Classification
Working Poc 95%
Attack Type
Rce | Sqli | Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Sphider Search Engine < 1.3.6, Sphider Pro/Plus < 3.2
No auth needed
Prerequisites: Network access to the target application · Default or bypassed credentials for RCE
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 8.8
EPSS 0.0978
EPSS Percentile 94.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-74
Status published
Products (3)
sphider/sphider < 1.3.6
sphider-plus/sphider-plus < 3.2
sphiderpro/sphider_pro < 3.2
Published Feb 10, 2020
Tracked Since Feb 18, 2026