Lucene search
K

6 matches found

NVD
NVD
added 2018/10/17 4:29 a.m.16 views

CVE-2018-18433

An issue was discovered in DESTOON B2B 7.0. admin/category.inc.php has XSS via the categorycatname parameter to the admin.php URI...

4.8CVSS4.9AI score0.00578EPSS
Exploits1References2
Prion
Prion
added 2018/10/17 4:29 a.m.16 views

Cross site request forgery (csrf)

An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request...

6.8CVSS8.6AI score0.00538EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/10/17 4:0 a.m.22 views

CVE-2018-18432

An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request...

8.7AI score0.00538EPSS
Exploits1References2
CVE
CVE
added 2018/10/17 4:0 a.m.44 views

CVE-2018-18431

DESTOON B2B 7.0 contains a cross-site scripting (XSS) vulnerability exposed via text boxes when visiting admin.php?moduleid=2&action=add. The CVE entry and CNVD/NVD variants describe the same issue, with no explicit details on affected build flavors beyond version 7.0 and the vulnerable input poi...

4.8CVSS4.8AI score0.00578EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/10/17 4:0 a.m.23 views

CVE-2018-18430

An issue was discovered in DESTOON B2B 7.0. admin\setting.inc.php has XSS via the first text box to the admin.php URI...

4.9AI score0.00578EPSS
Exploits1References2
CVE
CVE
added 2018/10/17 4:0 a.m.38 views

CVE-2018-18433

DESTOON B2B 7.0 contains a cross-site scripting (XSS) vulnerability in admin/category.inc.php, exploitable via the category[catname] parameter to admin.php. Affected component is the admin interface; root cause is unescaped user input flowing into the response. Public sources (NVD/CNVD/CVE record...

4.8CVSS4.8AI score0.00578EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder