Vulnerability Details CVE-2018-19559
CuppaCMS before 2018-11-12 has SQL Injection in administrator/classes/ajax/functions.php via the reference_id parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-19559
-
cpe:2.3:a:cuppacms:cuppacms:-
-
cpe:2.3:a:cuppacms:cuppacms:1.0
-
cpe:2.3:a:cuppacms:cuppacms:2016-05-25
-
cpe:2.3:a:cuppacms:cuppacms:2016-05-26
-
cpe:2.3:a:cuppacms:cuppacms:2016-06-09
-
cpe:2.3:a:cuppacms:cuppacms:2016-06-21
-
cpe:2.3:a:cuppacms:cuppacms:2016-06-30
-
cpe:2.3:a:cuppacms:cuppacms:2016-07-21
-
cpe:2.3:a:cuppacms:cuppacms:2016-07-27
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-01
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-03
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-05
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-19
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-22
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-25
-
cpe:2.3:a:cuppacms:cuppacms:2016-08-27
-
cpe:2.3:a:cuppacms:cuppacms:2016-10-04
-
cpe:2.3:a:cuppacms:cuppacms:2016-10-17
-
cpe:2.3:a:cuppacms:cuppacms:2016-11-05
-
cpe:2.3:a:cuppacms:cuppacms:2016-11-29
-
cpe:2.3:a:cuppacms:cuppacms:2016-12-06
-
cpe:2.3:a:cuppacms:cuppacms:2016-12-12
-
cpe:2.3:a:cuppacms:cuppacms:2017-06-08
-
cpe:2.3:a:cuppacms:cuppacms:2017-08-07
-
cpe:2.3:a:cuppacms:cuppacms:2017-10-02
-
cpe:2.3:a:cuppacms:cuppacms:2017-12-16
-
cpe:2.3:a:cuppacms:cuppacms:2018-03-28
-
cpe:2.3:a:cuppacms:cuppacms:2018-04-09
-
cpe:2.3:a:cuppacms:cuppacms:2018-04-24
-
cpe:2.3:a:cuppacms:cuppacms:2018-06-25
-
cpe:2.3:a:cuppacms:cuppacms:2018-09-04
-
cpe:2.3:a:cuppacms:cuppacms:2018-10-09