Medium severity5.4NVD Advisory· Published Oct 19, 2018· Updated Jun 17, 2026
CVE-2018-18417
CVE-2018-18417
Description
In the 3.1 version of Ekushey Project Manager CRM, Stored XSS has been discovered in the input and upload sections, as demonstrated by the name parameter to the index.php/admin/client/create URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 3.1
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/149842/Ekushey-Project-Manager-CRM-3.1-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/45681/nvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.