Aggregates CVE and security vulnerability intelligence across all destoon-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting and vendor risk csrf, with potential vendor impact session compromise across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-18433 | An issue was discovered in DESTOON B2B 7.0. admin/category.inc.php has XSS via the category[catname] parameter to the admin.php URI. | [email protected] | 4.8 | 0.24% | 2018-10-17 | 2024-11-21 |
| CVE-2018-18432 | An issue was discovered in DESTOON B2B 7.0. CSRF exists via the admin.php URI in an action=add request. | [email protected] | 8.8 | 0.14% | 2018-10-17 | 2024-11-21 |
| CVE-2018-18431 | An issue was discovered in DESTOON B2B 7.0. XSS exists via certain text boxes to the admin.php?moduleid=2&action=add URI. | [email protected] | 4.8 | 0.24% | 2018-10-17 | 2024-11-21 |
| CVE-2018-18430 | An issue was discovered in DESTOON B2B 7.0. admin\setting.inc.php has XSS via the first text box to the admin.php URI. | [email protected] | 4.8 | 0.24% | 2018-10-17 | 2024-11-21 |