Vulnerabilities > Paid TO Read Script Project

DATE	CVE	VULNERABILITY TITLE	RISK
2017-12-20	CVE-2017-17779	SQL Injection vulnerability in Paid to Read Script Project Paid to Read Script 2.0.5 Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter. network low complexity paid-to-read-script-project CWE-89 critical	9.8
2017-12-20	CVE-2017-17778	Cross-site Scripting vulnerability in Paid to Read Script Project Paid to Read Script 2.0.5 Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter. network low complexity paid-to-read-script-project CWE-79	4.8
2017-12-20	CVE-2017-17777	Improper Authentication vulnerability in Paid to Read Script Project Paid to Read Script 2.0.5 Paid To Read Script 2.0.5 has authentication bypass in the admin panel via a direct request, as demonstrated by the admin/viewvisitcamp.php fn parameter and the admin/userview.php uid parameter. network low complexity paid-to-read-script-project CWE-287 critical	9.8
2017-12-20	CVE-2017-17776	Information Exposure vulnerability in Paid to Read Script Project Paid to Read Script 2.0.5 Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter. network low complexity paid-to-read-script-project CWE-200	5.3
2017-12-18	CVE-2017-17651	SQL Injection vulnerability in Paid to Read Script Project Paid to Read Script 2.0.5 Paid To Read Script 2.0.5 has SQL Injection via the admin/userview.php uid parameter, the admin/viewemcamp.php fnum parameter, or the admin/viewvisitcamp.php fn parameter. network low complexity paid-to-read-script-project CWE-89 critical	9.8

Vulnerabilities > Paid TO Read Script Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Paid TO Read Script Project"}]}

Vulnerabilities > Paid TO Read Script Project