VYPR

iBanking

by Mart Developers

CVEs (2)

  • CVE-2025-29411CriMar 20, 2025
    risk 0.64cvss 9.8epss 0.01

    An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.

  • CVE-2025-29412MedMar 20, 2025
    risk 0.31cvss 4.8epss 0.00

    A cross-site scripting (XSS) vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.