69 matches found
EUVD-2018-10159
Malware in sbrugna...
EUVD-2018-10161
Malware in sbrugna...
EUVD-2018-10158
Malware in sbrugna...
EUVD-2018-10160
Malware in sbrugna...
File Containment Vulnerability in Destoon B2B Content Management System Backend (CNVD-2020-50908)
DESTOON® B2B Website Management System is an open source B2B e-commerce industry portal solution based on PHP+MySQL. A file inclusion vulnerability exists in the backend of the Destoon B2B content management system, which can be exploited by attackers to gain server administrative privileges...
File Upload Vulnerability After Destoon B2B Content Management System
DESTOON® B2B Website Management System is an open source B2B e-commerce industry portal solution based on PHP+MySQL. A file upload vulnerability exists after the Destoon B2B content management system, which can be exploited by attackers to gain server administrative privileges...
Destoon B2B Content Management System Backend File Inclusion Vulnerability
DESTOON® B2B Website Management System is an open source B2B e-commerce industry portal solution based on PHP+MySQL. A file inclusion vulnerability exists in the backend of the Destoon B2B content management system, which can be exploited by attackers to gain server administrative privileges...
Code Injection Vulnerability in Destoon B2B Website Management System Backend co***.in***.php File
DESTOON B2B website management system is a PHP MySQL based open source B2B e-commerce industry portal solution. Destoon B2B website management system backend co.in.php file has a code injection vulnerability. An attacker can exploit the vulnerability to remotely execute commands...
DESTOON B2B Cross-Site Scripting Vulnerability (CNVD-2018-21499)
DESTOON B2B is a PHP and MySQL based on open source B2B e-commerce website management system . A cross-site scripting vulnerability exists in DESTOON B2B version 7.0. Remote attackers can use the admin.php?moduleid=2&action=add URI text box to inject arbitrary Web script or HTML...
DESTOON B2B Cross-Site Request Forgery Vulnerability
DESTOON B2B is a PHP and MySQL based open source B2B e-commerce website management system . A cross-site request forgery vulnerability exists in DESTOON B2B version 7.0. A remote attacker can exploit this vulnerability by using the admin.php URI in the action=add request to perform unauthorized...
DESTOON B2B Cross-Site Scripting Vulnerability (CNVD-2018-21497)
DESTOON B2B is a PHP and MySQL based on open source B2B e-commerce website management system . A cross-site scripting vulnerability exists in the admin/category.inc.php file in DESTOON B2B version 7.0. A remote attacker can inject arbitrary Web script or HTML by providing the 'categorycatname'...
DESTOON B2B Cross-Site Scripting Vulnerability
DESTOON B2B is a PHP and MySQL based on open source B2B e-commerce website management system . A cross-site scripting vulnerability exists in the admin\setting.inc.php page in DESTOON B2B version 7.0. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via the...
CVE-2018-18431
An issue was discovered in DESTOON B2B 7.0. XSS exists via certain text boxes to the admin.php?moduleid=2&action=add URI...
CVE-2018-18431
An issue was discovered in DESTOON B2B 7.0. XSS exists via certain text boxes to the admin.php?moduleid=2&action=add URI...
CVE-2018-18432
An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request...
CVE-2018-18433
An issue was discovered in DESTOON B2B 7.0. admin/category.inc.php has XSS via the categorycatname parameter to the admin.php URI...
CVE-2018-18430
An issue was discovered in DESTOON B2B 7.0. admin\setting.inc.php has XSS via the first text box to the admin.php URI...
CVE-2018-18432
An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request...
CVE-2018-18430
An issue was discovered in DESTOON B2B 7.0. admin\setting.inc.php has XSS via the first text box to the admin.php URI...
CVE-2018-18433
An issue was discovered in DESTOON B2B 7.0. admin/category.inc.php has XSS via the categorycatname parameter to the admin.php URI...