CVE-2018-15185

Published: Aug 10, 2018Modified: Nov 21, 2024

6.5

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position" field.

Affected (1)

Products: Naukri Clone Script Project: Naukri Clone Script

Naukri Clone Script Project

1 product

Naukri Clone Script

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Naukri Clone Script Project Naukri Clone Script	Version 3.0.4

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://gkaim.com/cve-2018-15185-vikas-chaudhary/

Source: cve@mitre.org

ExploitThird Party Advisory

https://gkaim.com/cve-2018-15185-vikas-chaudhary/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.