High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-05-22	CVE-2018-11373	SQL Injection vulnerability in Iscripts Eswap 2.4 iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter. network low complexity iscripts CWE-89	7.5
2018-05-22	CVE-2018-11372	SQL Injection vulnerability in Iscripts Eswap 2.4 iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter. network low complexity iscripts CWE-89	7.5
2013-12-20	CVE-2013-7189	SQL Injection vulnerability in Iscripts Autohoster 2.4 Multiple SQL injection vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote attackers to execute arbitrary SQL commands via the cmbdomain parameter to (1) checktransferstatus.php, (2) checktransferstatusbck.php, or (3) additionalsettings.php; or (4) invno parameter to payinvoiceothers.php. network low complexity iscripts CWE-89	7.5
2011-11-02	CVE-2010-5036	SQL Injection vulnerability in Iscripts Eswap 2.0 SQL injection vulnerability in addsale.php in iScripts eSwap 2.0 allows remote attackers to execute arbitrary SQL commands via the type parameter. network low complexity iscripts CWE-89	7.5
2011-11-02	CVE-2010-5034	SQL Injection vulnerability in Iscripts Easybiller 1.1 SQL injection vulnerability in viewhistorydetail.php in iScripts EasyBiller 1.1 allows remote attackers to execute arbitrary SQL commands via the planid parameter. network low complexity iscripts CWE-89	7.5
2011-11-01	CVE-2010-4983	SQL Injection vulnerability in Iscripts Cybermatch 1.0 SQL injection vulnerability in profile.php in iScripts CyberMatch 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity iscripts CWE-89	7.5
2011-11-01	CVE-2010-4980	SQL Injection vulnerability in Iscripts Reservelogic 1.0 SQL injection vulnerability in packagedetails.php in iScripts ReserveLogic 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter. network low complexity iscripts CWE-89	7.5
2010-07-25	CVE-2010-2853	SQL Injection vulnerability in Iscripts Visualcaster SQL injection vulnerability in flashPlayer/playVideo.php in iScripts VisualCaster allows remote attackers to execute arbitrary SQL commands via the product_id parameter. network low complexity iscripts CWE-89	7.5
2010-07-02	CVE-2010-2624	SQL Injection vulnerability in Iscripts Easysnaps 2.0 Multiple SQL injection vulnerabilities in iScripts EasySnaps 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) comment parameter to add_comments.php, (2) values parameter to tags_details.php, or (3) begin parameter to greetings.php. network low complexity iscripts CWE-89	7.5
2008-09-22	CVE-2008-4169	SQL Injection vulnerability in Iscripts Easyindex SQL injection vulnerability in detaillist.php in iScripts EasyIndex, possibly 1.0, allows remote attackers to execute arbitrary SQL commands via the produid parameter. network low complexity iscripts CWE-89	7.5