2 matches found
CVE-2018-16410
CVE-2018-16410 affects Vanilla before 2.6.1 and allows SQL injection via an invitationID array to /profile/deleteInvitation. The vulnerability relates to applications/dashboard/models/class.invitationmodel.php and applications/dashboard/controllers/class.profilecontroller.php. According to CVSS, ...
fivequidexpert.com XSS vulnerability
Open Bug Bounty ID: OBB-656649 Description| Value ---|--- Affected Website:| fivequidexpert.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...