Cross-site scripting (XSS) vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a viewcategory action.
5.7AI Score
0.002EPSS
XSS exists in Domain Trader 2.5.3 via the recoverlogin.php email_address parameter.
6.1CVSS
5.9AI Score
0.001EPSS