favicon
DataLife Engine

CPE Prefix

General information

Website
Description
СMS developed by the Russian company SoftNews Media Group. The system is written in PHP and uses MySQL as a database. The basis was taken by the CutePHP system. The product is positioned by its developers as a means to organize their own media and blogs.
Organization
Repository
Versions Page
Release Date
2004

Domains using this technology

14.4K
Domain
Security Score
Security Score analyzes found vulnerabilities and indicates a lower or higher risk level of the potential attacks.
Site Title
DNS A record
www.sc-clock.eu favicon
www.sc-clock.eu
200
OK
Low
100 / 100 - Low security risk
Ceasuri din lemn de la Sergiu Carastefan
-
-
wwww.wnews.ge favicon
wwww.wnews.ge
200
OK
Low
100 / 100 - Low security risk
ყველა პოსტი ერთ სივრცეში!
-
-
igrat-v-halka-igrovie-avtomati.war-swarms.com favicon
igrat-v-halka-igrovie-avtomati.war-swarms.com
200
OK
Severe
22 / 100 - Severe security risk
Voir Film Streaming Français Complet Gratuit. VOIRFILM 2020
-
-
jovialmom.newbie88.com favicon
jovialmom.newbie88.com
200
OK
Low
100 / 100 - Low security risk
Jovialmom.com
-
-

IPv4 hosts using this technology

881
IP
Security Score
Security Score analyzes found vulnerabilities and indicates a lower or higher risk level of the potential attacks.
Open Ports
Hosted domains
Country
Elevated
60 / 100 - Elevated security risk
16
Medium
50 / 100 - Medium security risk
17
Medium
50 / 100 - Medium security risk
11
Low
100 / 100 - Low security risk
15

Known vulnerabilities

3
CVE ID
Severity
Description
HIGH
DataLife Engine (DLE) 9.7 allows remote attackers to execute arbitrary PHP code via the catlist[] parameter to engine/preview.php, which is used in a preg_replace function call with an e modifier.
MEDIUM
Session fixation vulnerability in DataLife Engine (DLE) 9.7 and earlier allows remote attackers to hijack web sessions via the PHPSESSID cookie.
LOW
An issue was discovered in DataLife Engine (DLE) through 13.0. An attacker can use XSS (related to the /addnews.html and /index.php?do=addnews URIs) to send a malicious script to unsuspecting Admins or users.