Readymadeb2bscript: Security Vulnerabilities
PHP Scripts Mall Entrepreneur B2B Script 3.0.6 allows Stored XSS via Account Settings fields such as FirstName and LastName, a similar issue to CVE-2018-14541.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-12-13
PHP Scripts Mall Basic B2B Script 2.0.0 has Reflected and Stored XSS via the First name, Last name, Address 1, City, State, and Company name fields.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-08-04
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
CVSS Score
9.8
EPSS Score
0.014
Published
2017-10-31