Dhananjay Bajaj

3 exploits Active since Aug 2018
CVE-2018-15901 WRITEUP HIGH WRITEUP
e107 2.1.8 - Cross-Site Request Forgery in usersettings.php
e107 2.1.8 has CSRF in 'usersettings.php' with an impact of changing details such as passwords of users including administrators.
CVSS 8.8
CVE-2018-15901 WRITEUP HIGH STUB
e107 2.1.8 - Cross-Site Request Forgery in usersettings.php
e107 2.1.8 has CSRF in 'usersettings.php' with an impact of changing details such as passwords of users including administrators.
CVSS 8.8
CVE-2018-16381 WRITEUP MEDIUM STUB
e107 2.1.8 - Cross-Site Scripting via user_loginname Parameter
e107 2.1.8 has XSS via the e107_admin/users.php?mode=main&action=list user_loginname parameter.
CVSS 6.1