Shodan
Vulnerabilities
Vulnerable Software
Dsmall Project:  >> Dsmall  Security Vulnerabilities
CVE-2018-9307
dsmall v20180320 allows XSS via the pdr_sn parameter to public/index.php/home/predeposit/index.html.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-04-04
CVE-2018-9014
dsmall v20180320 allows physical path leakage via a public/index.php/home/predeposit/index.html?pdr_sn= request.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-03-25
CVE-2018-9015
dsmall v20180320 allows XSS via the public/index.php/home/predeposit/index.html pdr_sn parameter (aka the CMS search box).
CVSS Score
5.4
EPSS Score
0.002
Published
2018-03-25
CVE-2018-9016
dsmall v20180320 allows XSS via the main page search box at the public/index.php/home URI.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-25
CVE-2018-9017
dsmall v20180320 allows XSS via the member search box at the public/index.php/home/membersnsfriend/findlist.html URI.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-03-25
CVE-2018-8906
dsmall v20180320 has XSS via a crafted street address to public/index.php/home/memberaddress/index.html, which is mishandled at public/index.php/home/memberaddress/edit/address_id/2.html.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved