Published: 23/07/2018 Updated: 20/09/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote malicious users to obtain sensitive information via a direct request for /dashboard/addplan, /dashboard/paywithcard/charge, /dashboard/withdrawal, or /privacy&terms, as demonstrated by reading database username, database password, database_name, and IP address fields, related to CVE-2018-12908.

Vulnerable Product	Search on Vulmon	Subscribe to Product
brynamics online trade -

# Exploit Title: Online Trade 1 - Information Disclosure # Exploit Author: Dhamotharan # Date: 2018-07-17 # Vendor Homepage: codecanyonnet/item/online-trade-online-forex-and-cryptocurrency-investment-system/21987193?s_rank=14 # CVE : CVE-2018-14328 # Version: 1 # Tested on: Kali Linux # Description : # Brynamics "Online Trade - Online tra ...

Online Trade version 1 suffers from an information leakage vulnerability ...

CWE-200 https://cxsecurity.com/issue/WLB-2018070175 https://www.exploit-db.com/exploits/45094/https://nvd.nist.gov https://www.exploit-db.com/exploits/45094/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-14328

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect