CVE-2018-6879

2018-04-1222:00:00

mitre

www.cve.org

8.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.9%

JSON

PHP Scripts Mall Website Seller Script 2.0.3 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation code.

References

0day4u.wordpress.com/2018/03/12/website-seller-script-improper-validation-of-email-address/