Design/Logic Flaw

2018-08-2821:29:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.0%

JSON

PHP Scripts Mall Website Seller Script 2.0.5 allows remote attackers to cause a denial of service via crafted JavaScript code in the First Name, Last Name, Company Name, or Fax field, as demonstrated by crossPwn.

CPENameOperatorVersion
website_seller_scripteq2.0.5

CPE	Name	Operator	Version
	website_seller_script	eq	2.0.5

References

gkaim.com/cve-2018-15897-vikas-chaudhary/