Vulnerabilities > Iscripts > Uberforx

DATE CVE VULNERABILITY TITLE RISK
2018-04-16 CVE-2018-10137 Cross-Site Request Forgery (CSRF) vulnerability in Iscripts Uberforx 2.2
iScripts UberforX 2.2 has CSRF in the "manage_settings" section of the Admin Panel via the /cms?section=manage_settings&action=edit URI.
network
iscripts CWE-352
6.8
2018-04-16 CVE-2018-10136 Cross-site Scripting vulnerability in Iscripts Uberforx 2.2
iScripts UberforX 2.2 has Stored XSS in the "manage_settings" section of the Admin Panel via a value field to the /cms?section=manage_settings&action=edit URI.
network
iscripts CWE-79
4.3