High severity8.8NVD Advisory· Published Jun 19, 2018· Updated Jun 17, 2026
CVE-2018-12519
CVE-2018-12519
Description
An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- cxsecurity.com/issue/WLB-2018060185nvdExploitThird Party Advisory
- www.exploit-db.com/exploits/44978/nvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.