Auditor Website
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-20638 | Med | 0.42 | 6.5 | 0.01 | Mar 21, 2019 | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. | ||
| CVE-2018-13256 | Med | 0.40 | 6.1 | 0.01 | Jul 9, 2018 | PHP Scripts Mall Auditor Website 2.0.1 has XSS via the lastname or firstname parameter. | ||
| CVE-2019-7553 | Med | 0.35 | 5.4 | 0.01 | Jun 6, 2019 | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field. | ||
| CVE-2018-20636 | Med | 0.35 | 5.4 | 0.01 | Mar 21, 2019 | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field. |
- risk 0.42cvss 6.5epss 0.01
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory.
- risk 0.40cvss 6.1epss 0.01
PHP Scripts Mall Auditor Website 2.0.1 has XSS via the lastname or firstname parameter.
- risk 0.35cvss 5.4epss 0.01
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field.
- risk 0.35cvss 5.4epss 0.01
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field.