CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-13849

edit_requests.php in yTakkar Instagram-clone through 2018-04-23 has XSS via an onmouseover payload because of an inadequate XSS protection mechanism based on preg_replace.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://cxsecurity.com/issue/WLB-2018070095
https://www.exploit-db.com/exploits/45003/
https://cxsecurity.com/issue/WLB-2018070095
https://www.exploit-db.com/exploits/45003/

Products affected by CVE-2018-13849

Instagram-Clone Project » Instagram-Clone » Version: 2018-04-23

cpe:2.3:a:instagram-clone_project:instagram-clone:2018-04-23

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-13849

Products

Pricing

Contact Us