RSS   Vulnerabilities for 'Destoon b2b'   RSS

2018-10-17
 
CVE-2018-18433

CWE-79
 

 
An issue was discovered in DESTOON B2B 7.0. admin/category.inc.php has XSS via the category[catname] parameter to the admin.php URI.

 
 
CVE-2018-18432

CWE-352
 

 
An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request.

 
 
CVE-2018-18431

CWE-79
 

 
An issue was discovered in DESTOON B2B 7.0. XSS exists via certain text boxes to the admin.php?moduleid=2&action=add URI.

 
 
CVE-2018-18430

CWE-79
 

 
An issue was discovered in DESTOON B2B 7.0. admin\setting.inc.php has XSS via the first text box to the admin.php URI.

 


Copyright 2024, cxsecurity.com

 

Back to Top