Basic B2b Script Security Vulnerabilities and Issues — Basic B2b Script CVE List

Lucene search

Basic B2b Script ProjectBasic B2b Script

4 matches found

CVE•added 2017/12/13 9:29 a.m.•34 views

CVE-2017-17600

Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter.

9.8CVSS9.8AI score0.02512EPSS

CVE•added 2019/03/21 4:0 p.m.•34 views

CVE-2018-20644

PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature.

8.8CVSS8.8AI score0.00141EPSS

CVE•added 2019/03/21 4:0 p.m.•25 views

CVE-2018-20645

PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field.

5.4CVSS5.8AI score0.00206EPSS

CVE•added 2019/03/21 4:0 p.m.•24 views

CVE-2018-20646

PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory.

6.5CVSS6.5AI score0.00372EPSS