CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-12051

Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script via $_FILE in /webmasterst/general.php, as demonstrated by a .php file with the image/jpeg content type.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/unh3x/just4cve/issues/5
https://github.com/unh3x/just4cve/issues/5

Products affected by CVE-2018-12051

Schools Alert Management Script Project » Schools Alert Management Script » Version: N/A

cpe:2.3:a:schools_alert_management_script_project:schools_alert_management_script:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12051

Products

Pricing

Contact Us