PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.
9.8CVSS
9.9AI Score
0.002EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the shopping-cart.php cusid parameter.
9.8CVSS
9.9AI Score
0.002EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address.
8.6CVSS
8.5AI Score
0.002EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the category.php chid1 parameter.
6.1CVSS
6AI Score
0.001EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the seller-view.php usid parameter.
6.1CVSS
6AI Score
0.001EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the shopping-cart.php cusid parameter.
6.1CVSS
6AI Score
0.001EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the admin/sellerupd.php companyname parameter.
6.1CVSS
6AI Score
0.001EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the my_wishlist.php fid parameter.
9.8CVSS
9.9AI Score
0.002EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the my_wishlist.php fid parameter.
6.1CVSS
6AI Score
0.001EPSS
PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the seller-view.php usid parameter.
9.8CVSS
9.9AI Score
0.002EPSS
8.8CVSS
8.7AI Score
0.001EPSS