Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Paid To Read Script Project Subscribe
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-17777 1 Paid To Read Script Project 1 Paid To Read Script 2024-02-04 7.5 HIGH 9.8 CRITICAL
Paid To Read Script 2.0.5 has authentication bypass in the admin panel via a direct request, as demonstrated by the admin/viewvisitcamp.php fn parameter and the admin/userview.php uid parameter.
CVE-2017-17778 1 Paid To Read Script Project 1 Paid To Read Script 2024-02-04 3.5 LOW 4.8 MEDIUM
Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter.
CVE-2017-17779 1 Paid To Read Script Project 1 Paid To Read Script 2024-02-04 7.5 HIGH 9.8 CRITICAL
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter.
CVE-2017-17776 1 Paid To Read Script Project 1 Paid To Read Script 2024-02-04 5.0 MEDIUM 5.3 MEDIUM
Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter.
CVE-2017-17651 1 Paid To Read Script Project 1 Paid To Read Script 2024-02-04 7.5 HIGH 9.8 CRITICAL
Paid To Read Script 2.0.5 has SQL Injection via the admin/userview.php uid parameter, the admin/viewemcamp.php fnum parameter, or the admin/viewvisitcamp.php fn parameter.