MidnightBSD

Advisories for online_lottery_php_readymade_script_project

CVE-2019-9604 MEDIUM

PHP Scripts Mall Online Lottery PHP Readymade Script 1.7.0 has Cross-Site Request Forgery (CSRF) for Edit Profile actions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
online_lottery_php_readymade_script_project online_lottery_php_readymade_script 1.7.0
CVE-2019-9605 LOW

PHP Scripts Mall Online Lottery PHP Readymade Script 1.7.0 has Reflected Cross-site Scripting (XSS) via the err value in a .ico picture upload.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
online_lottery_php_readymade_script_project online_lottery_php_readymade_script 1.7.0