RSS   Vulnerabilities for 'Uberforx'   RSS

2018-04-16
 
CVE-2018-10137

CWE-352
 

 
iScripts UberforX 2.2 has CSRF in the "manage_settings" section of the Admin Panel via the /cms?section=manage_settings&action=edit URI.

 
 
CVE-2018-10136

CWE-79
 

 
iScripts UberforX 2.2 has Stored XSS in the "manage_settings" section of the Admin Panel via a value field to the /cms?section=manage_settings&action=edit URI.

 

 >>> Vendor: Iscripts 14 Products
Supportdesk
Sonicbb
Multicart
Socialware
Easyindex
Easysnaps
Visualcaster
Reservelogic
Cybermatch
Easybiller
Eswap
Autohoster
Easycreate
Uberforx


Copyright 2024, cxsecurity.com

 

Back to Top