Skip to main content

Posty Readymade Classifieds

4 CVEs product

Monthly

CVE-2017-17569 MEDIUM POC This Month

Scubez Posty Readymade Classifieds has XSS via the admin/user_activate_submit.php ID parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Posty Readymade Classifieds
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-17568 HIGH POC This Week

Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/user_activate_submit.php (aka the backend PHP script), which might allow remote attackers to obtain sensitive. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Posty Readymade Classifieds
NVD GitHub
CVSS 3.0
7.5
EPSS
0.3%
CVE-2017-17567 HIGH POC This Week

Scubez Posty Readymade Classifieds has SQL Injection via the admin/user_activate_submit.php ID parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Posty Readymade Classifieds
NVD GitHub
CVSS 3.0
7.5
EPSS
0.3%
CVE-2017-17111 CRITICAL POC THREAT Emergency

Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 17.7%.

SQLi PHP Posty Readymade Classifieds
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
17.7%
Threat
4.0
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Scubez Posty Readymade Classifieds has XSS via the admin/user_activate_submit.php ID parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Posty Readymade Classifieds
NVD GitHub
EPSS 0% CVSS 7.5
HIGH POC This Week

Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/user_activate_submit.php (aka the backend PHP script), which might allow remote attackers to obtain sensitive. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Posty Readymade Classifieds
NVD GitHub
EPSS 0% CVSS 7.5
HIGH POC This Week

Scubez Posty Readymade Classifieds has SQL Injection via the admin/user_activate_submit.php ID parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Posty Readymade Classifieds
NVD GitHub
EPSS 18% 4.0 CVSS 9.8
CRITICAL POC THREAT Emergency

Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 17.7%.

SQLi PHP Posty Readymade Classifieds
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy