Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
JtbcJtbc Php

4 matches found

CVE
CVEadded 2018/11/17 3:29 p.m.35 views

CVE-2018-19327

An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php?type=action&action=add allows CSRF.

8.8CVSS8.6AI score0.00145EPSS
CVE
CVEadded 2018/10/01 8:29 a.m.34 views

CVE-2018-17836

An issue was discovered in JTBC(PHP) 3.0.1.6. It allows remote attackers to execute arbitrary PHP code by using a /console/file/manage.php?type=action&action=addfile&path=..%2F substring to upload, in conjunction with a multipart/form-data PHP payload.

8.8CVSS8.9AI score0.01189EPSS
CVE
CVEadded 2018/10/17 6:29 a.m.34 views

CVE-2018-18436

JTBC(PHP) 3.0 allows CSRF for creating an account via the console/account/manage.php?type=action&action=add URI.

8.8CVSS8.6AI score0.00141EPSS
CVE
CVEadded 2018/11/26 7:29 a.m.30 views

CVE-2018-19546

JTBC(PHP) 3.0.1.7 has CSRF via the console/xml/manage.php?type=action&action=edit URI, as demonstrated by an XSS payload in the content parameter.

8.8CVSS8.3AI score0.00146EPSS