Eswap@2.0 Security Vulnerabilities and Issues — Eswap@2.0 CVE List

Lucene search

IscriptsEswap2.0

2 matches found

CVE•added 2011/11/02 9:55 p.m.•34 views

CVE-2010-5036

SQL injection vulnerability in addsale.php in iScripts eSwap 2.0 allows remote attackers to execute arbitrary SQL commands via the type parameter.

7.5CVSS8.7AI score0.01614EPSS

CVE•added 2011/11/02 9:55 p.m.•27 views

CVE-2010-5035

Cross-site scripting (XSS) vulnerability in search.php in iScripts eSwap 2.0 allows remote attackers to inject arbitrary web script or HTML via the txtHomeSearch parameter (aka the search field). NOTE: some of these details are obtained from third party information.

4.3CVSS5.9AI score0.06571EPSS