Security Vulnerabilities - CVEs Published In 2017
PHPJabbers File Sharing Script 1.0 has stored XSS in the comments section.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-12-30
In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343.
CVSS Score
7.5
EPSS Score
0.007
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/slider_edit.php edit_id parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has CSRF via admin/subadmin_edit.php.
CVSS Score
6.8
EPSS Score
0.001
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has SQL injection via the view-profile.php mem_id parameter.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/event_edit.php edit_id parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/state_view.php cou_id parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/caste_view.php comm_id parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script allows arbitrary file upload via admin/mydetails_edit.php.
CVSS Score
7.2
EPSS Score
0.004
Published
2017-12-30
PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/event_add.php event_title parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2017-12-30