Vulnerabilities
Vulnerable Software
Advance B2b Script Project:  Security Vulnerabilities
PHP Scripts Mall Advance B2B Script 2.1.4 has stored Cross-Site Scripting (XSS) via the FIRST NAME or LAST NAME field.
CVSS Score
5.4
EPSS Score
0.002
Published
2019-03-21
PHP Scripts Mall Advance B2B Script 2.1.4 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-03-21
PHP Scripts Mall Advance B2B Script 2.1.4 allows remote attackers to cause a denial of service (changed Page structure) via JavaScript code in the First Name field.
CVSS Score
6.5
EPSS Score
0.005
Published
2019-03-21
PHP Scripts Mall Advance B2B Script 2.1.4 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory.
CVSS Score
4.3
EPSS Score
0.001
Published
2019-03-21
Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php show_id or view-product.php pid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13


Contact Us

Shodan ® - All rights reserved