CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-3783

A privilege escalation detected in flintcms versions <= 1.1.9 allows account takeover due to blind MongoDB injection in password reset.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.6%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2018-3783

Flintcms » Flintcms » Version: 1.0.0

cpe:2.3:a:flintcms:flintcms:1.0.0
Flintcms » Flintcms » Version: 1.1.0

cpe:2.3:a:flintcms:flintcms:1.1.0
Flintcms » Flintcms » Version: 1.1.1

cpe:2.3:a:flintcms:flintcms:1.1.1
Flintcms » Flintcms » Version: 1.1.2

cpe:2.3:a:flintcms:flintcms:1.1.2
Flintcms » Flintcms » Version: 1.1.3

cpe:2.3:a:flintcms:flintcms:1.1.3
Flintcms » Flintcms » Version: 1.1.6

cpe:2.3:a:flintcms:flintcms:1.1.6
Flintcms » Flintcms » Version: 1.1.9

cpe:2.3:a:flintcms:flintcms:1.1.9

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved