Basic B2B Script Project Basic B2B Script vulnerabilities
4 known vulnerabilities affecting basic_b2b_script_project/basic_b2b_script.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2017-17600P3CRITICALCVSS 9.8PoCv2.0.82017-12-13
CVE-2017-17600 [CRITICAL] CWE-89 CVE-2017-17600: Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter.
Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter.
nvd
CVE-2018-20646P3MEDIUMCVSS 6.5v2.0.92019-03-21
CVE-2018-20646 [MEDIUM] CWE-22 CVE-2018-20646: PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listi
PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory.
nvd
CVE-2018-20644P4HIGHCVSS 8.8v2.0.92019-03-21
CVE-2018-20644 [HIGH] CWE-352 CVE-2018-20644: PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile f
PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature.
nvd
CVE-2018-20645P4MEDIUMCVSS 5.4v2.0.92019-03-21
CVE-2018-20645 [MEDIUM] CWE-79 CVE-2018-20645: PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field.
PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field.
nvd