Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2017-17569
Disclosure Date: December 13, 2017 (last updated November 26, 2024)
Scubez Posty Readymade Classifieds has XSS via the admin/user_activate_submit.php ID parameter.
0
Attacker Value
Unknown
CVE-2017-17568
Disclosure Date: December 13, 2017 (last updated November 26, 2024)
Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/user_activate_submit.php (aka the backend PHP script), which might allow remote attackers to obtain sensitive information via a direct request.
0
Attacker Value
Unknown
CVE-2017-17567
Disclosure Date: December 13, 2017 (last updated November 26, 2024)
Scubez Posty Readymade Classifieds has SQL Injection via the admin/user_activate_submit.php ID parameter.
0
Attacker Value
Unknown
CVE-2017-17111
Disclosure Date: December 11, 2017 (last updated November 26, 2024)
Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request.
0
