MidnightBSD

Advisories for consumer_reviews_script_project

CVE-2018-20626 MEDIUM

PHP Scripts Mall Consumer Reviews Script 4.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
consumer_reviews_script_project consumer_reviews_script 4.0.3
CVE-2018-20627 LOW

PHP Scripts Mall Consumer Reviews Script 4.0.3 has HTML injection via the search box.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
consumer_reviews_script_project consumer_reviews_script 4.0.3