Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-9153
HistoryApr 15, 2018 - 2:00 p.m.

CVE-2018-9153

2018-04-1514:00:00
mitre
www.cve.org
4

AI Score

7.8

Confidence

High

EPSS

0.002

Percentile

62.6%

JSON

The plugin upload component in Z-BlogPHP 1.5.1 allows remote attackers to execute arbitrary PHP code via the app_id parameter to zb_users/plugin/AppCentre/plugin_edit.php because of an unanchored regular expression, a different vulnerability than CVE-2018-8893. The component must be accessed directly by an administrator, or through CSRF.

Related

prion 2
nvd 2
cve 2
cvelist 1
prion
prion
Cross site request forgery (csrf)
2018-04-16 09:58:00
Cross site request forgery (csrf)
2018-03-31 22:29:00
nvd
nvd
CVE-2018-9153
2018-04-16 09:58:12
CVE-2018-8893
2018-03-31 22:29:00
cve
cve
CVE-2018-9153
2018-04-16 09:58:12
CVE-2018-8893
2018-03-31 22:29:00
cvelist
cvelist
CVE-2018-8893
2018-03-31 22:00:00

AI Score

7.8

Confidence

High

EPSS

0.002

Percentile

62.6%

JSON
Related for CVELIST:CVE-2018-9153
prion2nvd2cve2cvelist1