SQL injection vulnerability in events.php in iScripts SocialWare allows remote attackers to execute arbitrary SQL commands via the id parameter in a show...
9.3AI Score
0.003EPSS
Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality. NOTE: remote exploitation is facilitated by a separate SQL injection...
8.2AI Score
0.003EPSS
iScripts SocialWare stores passwords in cleartext in a database, which allows context-dependent attackers to obtain sensitive...
7AI Score
0.002EPSS