CVE-2019-7552

Sažetak

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section.

Reference

https://securityhitlist.blogspot.com/2019/02/cve-2019-7552-php-scripts-mall.html
https://www.phpscriptsmall.com/product/investment-mlm/

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

21-04-2020 - 17:52

Objavljeno

06-06-2019 - 16:29