Webkul: >> Qloapps >> 1.5.2 Security Vulnerabilities
An issue in webkul qloapps before v1.6.0 allows an attacker to obtain sensitive information via the id_order parameter.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-01-17
Cross Site Scripting vulnerability found in Webkil QloApps v.1.5.2 allows a remote attacker to obtain sensitive information via the back and email_create parameters in the AuthController.php file.
CVSS Score
6.1
EPSS Score
0.696
Published
2023-05-11