13 matches found
EUVD-2017-8727
Malware in sbrugna...
EUVD-2017-8726
Malware in sbrugna...
EUVD-2017-8725
Malware in sbrugna...
Code injection
Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...
CVE-2017-17568
Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/useractivatesubmit.php aka the backend PHP script, which might allow remote attackers to obtain sensitive information via a direct request...
CVE-2017-17567
Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...
Sql injection
Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...
CVE-2017-17569
Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...
CVE-2017-17567
Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...
CVE-2017-17569
Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...
CVE-2017-17568
Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/useractivatesubmit.php aka the backend PHP script, which might allow remote attackers to obtain sensitive information via a direct request...
CVE-2017-17569
CVE-2017-17569 affects Scubez Posty Readymade Classifieds, where the admin/user_activate_submit.php ID parameter triggers a cross-site scripting (XSS) vulnerability. The root cause is reflected XSS via the ID parameter, allowing injection of arbitrary script/HTML (CNVD-2018-00534 notes the issue ...
CVE-2017-17568
CVE-2017-17568 affects Scubez Posty Readymade Classifieds, with an incorrect access control flaw on the admin/user_activate_submit.php backend script. The underlying issue allows remote attackers to obtain sensitive information via a direct request. Documents indicate potential information disclo...