CVE-2018-12519 – An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote at …

0

Vuln ID: CVE-2018-12519

Published:  2018-06-19  21:29:01Z

Description: An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user’s credentials.

Source: NVD.NIST.GOV