CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-15818

An issue was discovered in Repute ARForms 3.5.1 and prior. An attacker is able to delete any file on the server with web server privileges by sending a malicious request to admin-ajax.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 73.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 6.4

References

http://packetstormsecurity.com/files/149981/WordPress-Arforms-3.5.1-Arbitrary-File-Delete.html
https://wpvulndb.com/vulnerabilities/9139
http://packetstormsecurity.com/files/149981/WordPress-Arforms-3.5.1-Arbitrary-File-Delete.html
https://wpvulndb.com/vulnerabilities/9139

Products affected by CVE-2018-15818

Reputeinfosystems » Repute Arforms » Version: 3.5.1

cpe:2.3:a:reputeinfosystems:repute_arforms:3.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15818

Products

Pricing

Contact Us