Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iscripts vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2853
SQL injection vulnerability in flashPlayer/playVideo.php in iScripts VisualCaster allows remote malicious users to execute arbitrary SQL commands via the product_id parameter.
Iscripts Visualcaster
1 EDB exploit
NA
CVE-2008-4169
SQL injection vulnerability in detaillist.php in iScripts EasyIndex, possibly 1.0, allows remote malicious users to execute arbitrary SQL commands via the produid parameter.
Iscripts Easyindex
1 EDB exploit
NA
CVE-2008-1790
Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality. NOTE: remote exploitation is facilitated by a separate SQL injection vulner...
Iscripts Socialware
1 EDB exploit
NA
CVE-2008-1859
SQL injection vulnerability in events.php in iScripts SocialWare allows remote malicious users to execute arbitrary SQL commands via the id parameter in a show action.
Iscripts Socialware
1 EDB exploit
NA
CVE-2008-1772
iScripts SocialWare stores passwords in cleartext in a database, which allows context-dependent malicious users to obtain sensitive information.
Iscripts Socialware
1 EDB exploit
NA
CVE-2010-5034
SQL injection vulnerability in viewhistorydetail.php in iScripts EasyBiller 1.1 allows remote malicious users to execute arbitrary SQL commands via the planid parameter.
Iscripts Easybiller 1.1
1 EDB exploit
6.1
CVSSv3
CVE-2018-10136
iScripts UberforX 2.2 has Stored XSS in the "manage_settings" section of the Admin Panel via a value field to the /cms?section=manage_settings&action=edit URI.
Iscripts Uberforx 2.2
8.8
CVSSv3
CVE-2018-10137
iScripts UberforX 2.2 has CSRF in the "manage_settings" section of the Admin Panel via the /cms?section=manage_settings&action=edit URI.
Iscripts Uberforx 2.2
NA
CVE-2007-5261
Multiple SQL injection vulnerabilities in MultiCart 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) catid parameter to categorydetail.php and the (2) ddlCategory parameter to search.php.
Iscripts Multicart 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2018-10048
iScripts eSwap v2.4 has CSRF via "registration_settings.php" in the Admin Panel.
Iscripts Eswap 2.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »