CVE-2017-14322

CRITICAL

Interspire Email Marketer <6.1.6 - Auth Bypass

Title source: llm

Description

The function in charge to check whether the user is already logged in init.php in Interspire Email Marketer (IEM) prior to 6.1.6 allows remote attackers to bypass authentication and obtain administrative access by using the IEM_CookieLogin cookie with a specially crafted value.

Exploits (2)

exploitdb WORKING POC

by devcoinfet · pythonwebappsphp

https://www.exploit-db.com/exploits/44513

View Code ZIP pw:eip

nomisec WRITEUP 5 stars

by joesmithjaffa · poc

https://github.com/joesmithjaffa/CVE-2017-14322

View Code ZIP pw:eip

References (3)

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2017/Oct/39

[Broken Link] https://security.infoteam.ch/en/blog/posts/narrative-of-an-incident-response-from-compromise-to-the-publication-of-the-weakness.html

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/44513/

Scores

CVSS v3 9.8

EPSS 0.2614

EPSS Percentile 96.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-287

Status published

Products (1)

interspire/email_marketer < 6.1.5

Published Oct 18, 2017

Tracked Since Feb 18, 2026