VYPR
← All advisories
Unrated severityNVD Advisory· Published May 20, 2014· Updated May 6, 2026

CVE-2014-2351

CVE-2014-2351

Description

SQL injection vulnerability in the LiveData service in CSWorks before 2.5.5233.0 allows remote attackers to execute arbitrary SQL commands via vectors related to pathnames contained in web API requests.

Affected products

33
  • Controlsystemworks/Csworks32 versions
    cpe:2.3:a:controlsystemworks:csworks:*:*:*:*:*:*:*:*+ 31 more
    • cpe:2.3:a:controlsystemworks:csworks:*:*:*:*:*:*:*:*range: <=2.5.5050.0
    • cpe:2.3:a:controlsystemworks:csworks:1.0.3540.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.3560.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.3580.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.601.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.612.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.623.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.720.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.801.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.813.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.0.901.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.1.3600.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.1.3674.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.1.3700.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.2.3730.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.2.3800.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.3820.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.3830.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.3850.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.3860.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.3880.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.3900.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.4.4000.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.7.4050.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:1.7.5000.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.0.4115.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.0.4115.1:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.1.4386.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.1.4560.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.5.4770.0:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.5.4770.1:*:*:*:*:*:*:*
    • cpe:2.3:a:controlsystemworks:csworks:2.5.4912.0:*:*:*:*:*:*:*
  • Codeworks/Csworksv5
    Range: 0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.