CVE-2019-9864

Name: CVE-2019-9864
Creator: NVD / NIST
Published: 2019-03-28T15:29:00.543+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.96%

Last modified Jun 17, 2026

CVE-2019-9864 is a vulnerability of currently unknown severity. PHP Scripts Mall Amazon Affiliate Store 2.1.6 allows Parameter Tampering of the payment amount.. EPSS estimates a 0.96% chance of exploitation in the next 30 days.

Description

PHP Scripts Mall Amazon Affiliate Store 2.1.6 allows Parameter Tampering of the payment amount.

Metrics

EPSS Probability

0.96%

57.1th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Amazon Affiliate Store Project	Amazon Affiliate Store	2.1.6

References

https://hackingvila.wordpress.com/2019/03/19/php-scripts-mall-amazon-affiliate-store-2-1-6-allows-parameter-tampering-of-the-payment-amountcve-2019-9864/Exploit, Third Party Advisory
https://hackingvila.wordpress.com/2019/03/19/php-scripts-mall-amazon-affiliate-store-2-1-6-allows-parameter-tampering-of-the-payment-amountcve-2019-9864/Exploit, Third Party Advisory

Timeline

Published: Mar 28, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-9864?

PHP Scripts Mall Amazon Affiliate Store 2.1.6 allows Parameter Tampering of the payment amount.

How severe is CVE-2019-9864?

Severity scoring for CVE-2019-9864 is pending analysis. The EPSS model estimates a 0.96% probability of exploitation in the next 30 days.

How do I fix CVE-2019-9864?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-9864?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST