Lucene search
+L

8 matches found

cnvd
cnvd
added 2018/06/08 12:0 a.m.5 views

Posty Readymade Classifieds Script SQL Injection Vulnerability

Posty Readymade Classifieds Script is a bulletin type website script by Posty India. A security vulnerability exists in Posty Readymade Classifieds Script version 1.0. The vulnerability can be exploited to inject SQL commands by sending a listings.php?catid= or ads-details.php?ID= request...

9.8CVSS7.8AI score0.088EPSS
Exploits2References1
cnvd
cnvd
added 2018/06/08 12:0 a.m.5 views

Scubez Posty Readymade Classifieds SQL Injection Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A SQL injection vulnerability exists in Posty Scubez Posty Readymade Classifieds. A remote attacker can exploit this vulnerability by sending the 'ID' parameter to the...

7.5CVSS8.1AI score0.01145EPSS
Exploits1References1
cnvd
cnvd
added 2017/12/15 12:0 a.m.5 views

Posty Scubez Posty Readymade Classifieds Unauthorized Access Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A security vulnerability exists in Posty Scubez Posty Readymade Classifieds, which stems from the program's failure to perform proper access control on access to the...

7.5CVSS6.8AI score0.01384EPSS
Exploits1References1
prion
prion
added 2017/12/13 9:29 a.m.14 views

Sql injection

Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...

5CVSS8.1AI score0.01145EPSS
Exploits1References1
cvelist
cvelist
added 2017/12/13 9:0 a.m.15 views

CVE-2017-17569

Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...

6.1AI score0.00669EPSS
Exploits1References1
cvelist
cvelist
added 2017/12/13 9:0 a.m.23 views

CVE-2017-17568

Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/useractivatesubmit.php aka the backend PHP script, which might allow remote attackers to obtain sensitive information via a direct request...

7.4AI score0.01384EPSS
Exploits1References1
cve
cve
added 2017/12/13 9:0 a.m.55 views

CVE-2017-17569

CVE-2017-17569 affects Scubez Posty Readymade Classifieds, where the admin/user_activate_submit.php ID parameter triggers a cross-site scripting (XSS) vulnerability. The root cause is reflected XSS via the ID parameter, allowing injection of arbitrary script/HTML (CNVD-2018-00534 notes the issue ...

6.1CVSS6AI score0.00669EPSS
Exploits1References1Affected Software1
exploitpack
exploitpack
added 2017/12/05 12:0 a.m.21 views

Readymade Classifieds Script 1.0 - SQL Injection

Readymade Classifieds Script 1.0 - SQL Injection Exploit Title: Readymade Classifieds Script 1.0 - SQL Injection Dork: N/A Date: 02.12.2017 Vendor Homepage: http://www.scubez.net/ Software Link: http://www.posty.in/index.html Demo: http://www.posty.in/readymade-classifieds-demo.html Version: 1.0...

0.5AI score
Exploits0
Rows per page
Query Builder