Scubez

scubez

4 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Posty Readymade Classifieds

posty_readymade_classifieds

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-17569 1Scubez 1Posty Readymade Classifieds May 13, 2026 Dec 13, 2017 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Scubez Posty Readymade Classifieds has XSS via the admin/user_activate_submit.php ID parameter.
CVE-2017-17568 1Scubez 1Posty Readymade Classifieds May 13, 2026 Dec 13, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/user_activate_submit.php (aka the backend PHP script), which might allow remote attackers to obtain sensitive information via a direct re...Show more Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/user_activate_submit.php (aka the backend PHP script), which might allow remote attackers to obtain sensitive information via a direct request.Show less
CVE-2017-17567 1Scubez 1Posty Readymade Classifieds May 13, 2026 Dec 13, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Scubez Posty Readymade Classifieds has SQL Injection via the admin/user_activate_submit.php ID parameter.
CVE-2017-17111 1Scubez 1Posty Readymade Classifieds May 13, 2026 Dec 11, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request.