Lucene search
CVE-2018-14964
An XSS issue in EMLsoft 5.4.5 via the eml/upload/eml/?action=address&do=edit page
Show more
| Reporter | Title | Published | Views | Family All 3 |
|---|---|---|---|---|
 | Code injection | 6 Aug 201815:29 | – | prion |
 | CVE-2018-14964 | 6 Aug 201815:29 | – | nvd |
 | CVE-2018-14964 | 6 Aug 201815:00 | – | cvelist |
Node
| Source | Link |
|---|---|
| github | www.github.com/AvaterXXX/emlsoft/blob/master/README.md |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| action | query param | /eml/upload/eml/ | Cross-Site Scripting (XSS) vulnerability in EMLsoft 5.4.5 allows attackers to inject malicious scripts. | CWE-79 |
| do | query param | /eml/upload/eml/ | Cross-Site Scripting (XSS) vulnerability in EMLsoft 5.4.5 allows attackers to inject malicious scripts. | CWE-79 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo06 Aug 2018 15:29Current
5.2Medium risk
Vulners AI Score5.2
CVSS23.5
CVSS35.4
EPSS0.00073