CVE-2018-13849

edit_requests.php in yTakkar Instagram-clone through 2018-04-23 has XSS via an onmouseover payload because of an inadequate XSS protection mechanism based on preg_replace.
References
Link Resource
https://cxsecurity.com/issue/WLB-2018070095 Exploit Third Party Advisory
https://www.exploit-db.com/exploits/45003/ Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:instagram-clone_project:instagram-clone:*:*:*:*:*:*:*:*

Information

Published : 2018-07-10 06:29

Updated : 2018-09-05 03:42


NVD link : CVE-2018-13849

Mitre link : CVE-2018-13849

Products Affected
No products.
CWE