Lucene search

CVE-2018-6862

🗓️ 12 Feb 2018 03:00:29Reported by mitreType

cve🔗 web.nvd.nist.gov👁 34 Views🌐 WEB

Cross Site Scripting (XSS) in PHP Scripts Mall Bitcoin MLM Software 1.0.

Reporter	Title	Published	Views	Family All 6
0day.today	Bitcoin MLM Software 1.0.2 - Cross-Site Scripting Vulneravility	10 Feb 201800:00	–	zdt
Prion	Cross site scripting	12 Feb 201803:29	–	prion
NVD	CVE-2018-6862	12 Feb 201803:29	–	nvd
Packet Storm	Bitcoin MLM Software 1.0.2 Cross Site Scripting	9 Feb 201800:00	–	packetstorm
Exploit DB	Bitcoin MLM Software 1.0.2 - Cross-Site Scripting	10 Feb 201800:00	–	exploitdb
Cvelist	CVE-2018-6862	12 Feb 201803:00	–	cvelist

Nvd

Node

bitcoin_mlm_project bitcoin_mlmMatch1.0.2

Source	Link
exploit-db	www.exploit-db.com/exploits/44013

Parameter	Position	Path	Description	CWE
<script>alert("PKP")</script>	request body	/edit-profile	Stored XSS vulnerability allows injection of malicious scripts in profile fields.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Feb 2018 03:29Current

5.3Medium risk

Vulners AI Score5.3

CVSS23.5

CVSS35.4

EPSS0.00181

CWE-79