Lucene search
PRIOn knowledge basePRION:CVE-2018-5705HistoryJan 24, 2018 - 5:29 p.m.
Design/Logic Flaw
2018-01-2417:29:00
PRIOn knowledge base
www.prio-n.com
3
0.001 Low
EPSS
Percentile
45.5%
Reservo Image Hosting 1.6 is vulnerable to XSS attacks. The affected function is its search engine (the t parameter to the /search URI). Since there is an user/admin login interface, it’s possible for attackers to steal sessions of users and thus admin(s). By sending users an infected URL, code will be executed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| image_hosting | eq | 1.6 |
Related
openvas
openvas
Reservo Image Hosting Script < 1.6.1 XSS Vulnerability
2018-01-18 00:00:00
cve
cve
CVE-2018-5705
2018-01-24 17:29:00
exploitpack
exploitpack
Reservo Image Hosting Script 1.5 - Cross-Site Scripting
2018-01-17 00:00:00
packetstorm
packetstorm
Reservo Image Hosting Script 1.5 Cross Site Scripting
2018-01-17 00:00:00
cvelist
cvelist
CVE-2018-5705
2018-01-24 17:00:00
nvd
nvd
CVE-2018-5705
2018-01-24 17:29:00
zdt
zdt
Reservo Image Hosting Script 1.5 - Cross-Site Scripting Vulnerability
2018-01-17 00:00:00
exploitdb
exploitdb
Reservo Image Hosting Script 1.5 - Cross-Site Scripting
2018-01-17 00:00:00