Vulnerability Details CVE-2018-9122
In Crea8social 2018.2, there is Reflected Cross-Site Scripting via the term parameter to the /search URI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.0%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
- https://www.seekurity.com/blog/general/multiple-cross-site-scripting-vulnerabilities-in-crea8social-social-network-script/
- https://www.youtube.com/watch?v=QqJFh3Ame9g
- https://www.seekurity.com/blog/general/multiple-cross-site-scripting-vulnerabilities-in-crea8social-social-network-script/
- https://www.youtube.com/watch?v=QqJFh3Ame9g
Products affected by CVE-2018-9122
-
cpe:2.3:a:crea8social:crea8social:2018.2