CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

85 matches found

NVD•added 2018/10/24 9:29 p.m.•16 views

CVE-2018-18635

www/guis/admin/application/controllers/UserController.php in the administration login interface in MailCleaner CE 2018.08 and 2018.09 allows XSS via the admin/login/user/message/ PATHINFO...

6.1CVSS6AI score0.0024EPSS

Exploits1References2

OSV•added 2018/10/24 9:29 p.m.•15 views

CVE-2018-18635

www/guis/admin/application/controllers/UserController.php in the administration login interface in MailCleaner CE 2018.08 and 2018.09 allows XSS via the admin/login/user/message/ PATHINFO...

6.1CVSS5.8AI score

Exploits0References2

Prion•added 2018/10/24 9:29 p.m.•10 views

Code injection

www/guis/admin/application/controllers/UserController.php in the administration login interface in MailCleaner CE 2018.08 and 2018.09 allows XSS via the admin/login/user/message/ PATHINFO...

4.3CVSS6AI score0.0024EPSS

Exploits1References2Affected Software1

Cvelist•added 2018/10/24 9:0 p.m.•15 views

CVE-2018-18635

www/guis/admin/application/controllers/UserController.php in the administration login interface in MailCleaner CE 2018.08 and 2018.09 allows XSS via the admin/login/user/message/ PATHINFO...

6AI score0.0024EPSS

Exploits1References2

CVE•added 2018/10/24 9:0 p.m.•40 views

CVE-2018-18635

MailCleaner CE is affected by CVE-2018-18635, a cross-site scripting vulnerability in the admin login interface. The issue is in www/guis/admin/application/controllers/UserController.php and can be exploited via PATH_INFO on the admin/login/user/message/ page to inject arbitrary script/HTML. Repo...

6.1CVSS5.9AI score0.0024EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by