Fortunescripts: Security Vulnerabilities
FS Lynda Clone has CSRF via user/edit_profile, as demonstrated by adding content to the user panel.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-12-27
FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the edit_profile_first_name parameter to user/edit_profile.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-12-27
FS Ebay Clone 1.0 has SQL Injection via the product.php id parameter, or the search.php category_id or sub_category_id parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13