2 matches found
CVE-2018-10050
iScripts eSwap v2.4 has SQL injection via the "registrationsettings.php" ddlFree parameter in the Admin Panel...
CVE-2018-10050
CVE-2018-10050 affects iScripts eSwap v2.4, where the Admin Panel’s registration_settings.php hidden ddlFree parameter is vulnerable to SQL injection. The issue is described across multiple connected sources (NVD, Red Hat advisory, CNVD) as a SQL injection vulnerability in iScripts eSwap v2.4, wi...