CVE-2017-17600

CVE-2017-17600 affects Basic B2B Script 2.0.8, with a SQL Injection vulnerability via the id parameter in product_details.php. The root cause is unsafe handling of the id input that enables injection of SQL commands. This vulnerability has a high impact in CVSS terms (confidentiality, integrity, ...

CVE-2018-20644

Technical details about CVE-2018-20644 are not publicly provided in the supplied documents. Monitor for updates from official sources for affected products, impact, and remediation.

CVE-2018-20645

Summary of CVE-2018-20645 : The vulnerability affects PHP Scripts Mall Basic B2B Script 2.0.9, with HTML injection possible through the First Name or Last Name fields. The initial disclosure lists a CVSS base score of 5.4 (Medium) on CVSS 3.0 and 3.5 (Low) on CVSS 2.0, indicating a moderate impac...

CVE-2018-20646

The CVE-2018-20646 entry concerns PHP Scripts Mall Basic B2B Script 2.0.9, where a directory traversal vulnerability allows listing of an image directory (e.g., uploads/) via a direct request. The vulnerability targets the image directory listing functionality; CVSS metrics indicate a Network att...