CVE-2018-15186
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-15186
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHP Scripts Mall Chartered Accountant:Auditor Website 跨站请求伪造漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHP Scripts Mall Chartered Accountant:Auditor Website是印度PHP Scripts Mall公司的一套财务审计网站系统脚本。该系统包括配置文件管理、反馈管理、订单管理和上传文档管理等功能。 PHP Scripts Mall Chartered Accountant:Auditor Website 2.0.1版本中存在跨站请求伪造漏洞。远程攻击者可通过发送HTTP请求利用该漏洞执行未授权的操作。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2018-15186
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-15186
请登录查看更多情报信息。
- https://gkaim.com/cve-2018-15186-vikas-chaudhary/x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2018-15186
Same Patch Batch · n/a · 2018-08-10 · 16 CVEs total
| CVE-2018-13341 | Crestron TSW-X60和MC3 安全漏洞 | |
| CVE-2018-15190 | PHP Scripts Mall hotel-booking-script 跨站脚本漏洞 | |
| CVE-2018-15191 | PHP Scripts Mall hotel-booking-script 安全漏洞 | |
| CVE-2018-11492 | ASUS HG100 安全漏洞 | |
| CVE-2018-14028 | WordPress 安全漏洞 | |
| CVE-2018-14503 | Coremail XT 跨站脚本漏洞 | |
| CVE-2018-14837 | Wolf CMS 跨站脚本漏洞 | |
| CVE-2018-7754 | Linux kernel 日志信息泄露漏洞 | |
| CVE-2018-10769 | SmartMesh 安全漏洞 | |
| CVE-2018-15185 | PHP Scripts Mall Naukri/Shine/Jobsite Clone Script 安全漏洞 | |
| CVE-2018-15187 | PHP Scripts Mall advanced-real-estate-script 跨站请求伪造漏洞 | |
| CVE-2018-15188 | PHP Scripts Mall advanced-real-estate-script 安全漏洞 | |
| CVE-2018-15189 | PHP Scripts Mall advanced-real-estate-script 跨站脚本漏洞 | |
| CVE-2018-6553 | AppArmor cupsd Sandbox Bypass Due to Use of Hard Links | |
| CVE-2018-6556 | The lxc-user-nic component of LXC allows unprivileged users to open arbitrary files |
IV. Related Vulnerabilities
V. Comments for CVE-2018-15186
No comments yet