Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2017-15579

Published: 18/10/2017 Updated: 08/11/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

In PHPSUGAR PHP Melody prior to 2.7.3, SQL Injection exists via an aa_pages_per_page cookie in a playlist action to watch.php.

Vulnerable Product Search on Vulmon Subscribe to Product

phpsugar php melody

Exploits

Exploit DB: PHP Melody 2.7.3 - Multiple Vulnerabilities
## Vulnerabilities Summary The following advisory describes three (3) vulnerabilities found in PHP Melody version 273 PHP Melody is a “self-hosted Video CMS which evolved over the last 9 years SEO optimization, unbeaten security and speed are advantages you no longer have to compromise on A truly great CMS should help you save time and make ...

References

CWE-89https://blogs.securiteam.com/index.php/archives/3464http://www.phpsugar.com/blog/2017/10/php-melody-v2-7-3-maintenance-release/https://nvd.nist.govhttps://www.exploit-db.com/exploits/44056/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflowtype confusionserver-side request forgeryCVE-2024-38440CVE-2024-27801CVE-2024-5868CVE-2024-0582CVE-2024-37643CVE-2024-3105
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook