CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-8929

Malware in sbrugna...

4.8CVSS5.1AI score0.00235EPSS

Exploits1References2

Prion•added 2017/12/20 3:29 a.m.•12 views

Authentication flaw

Paid To Read Script 2.0.5 has authentication bypass in the admin panel via a direct request, as demonstrated by the admin/viewvisitcamp.php fn parameter and the admin/userview.php uid parameter...

7.5CVSS9.5AI score0.00725EPSS

Exploits1References1Affected Software1

Prion•added 2017/12/20 3:29 a.m.•17 views

Path traversal

Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter...

5CVSS5.3AI score0.00232EPSS

Exploits1References1Affected Software1

NVD•added 2017/12/20 3:29 a.m.•9 views

CVE-2017-17778

Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter...

4.8CVSS5AI score0.00235EPSS

Exploits1References1

CVE•added 2017/12/20 3:0 a.m.•52 views

CVE-2017-17778

Paid To Read Script 2.0.5 contains a cross-site scripting (XSS) vulnerability exploitable via the referrals.php tier parameter or the admin/userview.php uid parameter. The CVE entry is supported by multiple connected records (NVD and CNVD variants) stating the same vectors. The exact root cause a...

4.8CVSS4.9AI score0.00235EPSS

Exploits1References1Affected Software1

Cvelist•added 2017/12/20 3:0 a.m.•10 views

CVE-2017-17778

Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter...

5AI score0.00235EPSS

Exploits1References1

CVE•added 2017/12/20 3:0 a.m.•43 views

CVE-2017-17776

Paid To Read Script 2.0.5 has a vulnerability that allows full path disclosure through an invalid admin/userview.php uid parameter. The CVE entry notes a information disclosure risk (confidentiality impact) with a CVSS v2 base score 5.0 and CVSS v3 base score 5.3. Connected sources corroborate th...

5.3CVSS5.3AI score0.00232EPSS

Exploits1References1Affected Software1

NVD•added 2017/12/18 9:29 a.m.•6 views

CVE-2017-17651

Paid To Read Script 2.0.5 has SQL Injection via the admin/userview.php uid parameter, the admin/viewemcamp.php fnum parameter, or the admin/viewvisitcamp.php fn parameter...

9.8CVSS10AI score0.02512EPSS

Exploits5References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by