Iscripts Security Vulnerabilities
iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' parameter in the User...
8.8CVSS
8.6AI Score
0.001EPSS
iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId...
9.8CVSS
8.6AI Score
0.002EPSS
iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId...
9.8CVSS
8.6AI Score
0.002EPSS
iScripts UberforX 2.2 has CSRF in the "manage_settings" section of the Admin Panel via the /cms?section=manage_settings&action=edit...
8.8CVSS
7.4AI Score
0.001EPSS
iScripts eSwap v2.4 has Reflected XSS via the "catwiseproducts.php" catid parameter in the User...
6.1CVSS
6.2AI Score
0.001EPSS
iScripts UberforX 2.2 has Stored XSS in the "manage_settings" section of the Admin Panel via a value field to the /cms?section=manage_settings&action=edit...
6.1CVSS
6.1AI Score
0.001EPSS
iScripts SupportDesk v4.3 has XSS via the admin/inteligentsearchresult.php txtinteligentsearch...
4.8CVSS
6.2AI Score
0.001EPSS
iScripts eSwap v2.4 has XSS via the "registration_settings.php" txtDate parameter in the Admin...
4.8CVSS
6.2AI Score
0.001EPSS
iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin...
7.2CVSS
8.6AI Score
0.001EPSS
iScripts SupportDesk v4.3 has XSS via the staff/inteligentsearchresult.php txtinteligentsearch...
5.4CVSS
6.2AI Score
0.001EPSS
8.8CVSS
7.4AI Score
0.001EPSS
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description"...
5.4CVSS
5.3AI Score
0.001EPSS
iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to...
6.1CVSS
6AI Score
0.003EPSS
5.4CVSS
5.3AI Score
0.001EPSS