Vulnerabilities > Basic B2B Script Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2018-20646 | Path Traversal vulnerability in Basic B2B Script Project Basic B2B Script 2.0.9 PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory. | 6.5 |
| 2019-03-21 | CVE-2018-20645 | Cross-site Scripting vulnerability in Basic B2B Script Project Basic B2B Script 2.0.9 PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field. | 5.4 |