An issue was discovered in DESTOON B2B 7.0. admin\setting.inc.php has XSS via the first text box to the admin.php URI.
4.8CVSS
4.8AI Score
0.001EPSS
An issue was discovered in DESTOON B2B 7.0. XSS exists via certain text boxes to the admin.php?moduleid=2&action=add URI.
4.8CVSS
4.8AI Score
0.001EPSS
An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request.
8.8CVSS
8.6AI Score
0.004EPSS
An issue was discovered in DESTOON B2B 7.0. admin/category.inc.php has XSS via the category[catname] parameter to the admin.php URI.
4.8CVSS
4.8AI Score
0.001EPSS