Esmi : Security Vulnerabilities, CVEs,
Cross-site scripting vulnerability in products1h.php in ESMI PayPal Storefront allows remote attackers to inject arbitrary web script or HTML via the id parameter.
Max CVSS
5.0
EPSS Score
5.47%
Published
2005-05-02
Updated
2016-10-18
Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote attackers to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.
Max CVSS
7.5
EPSS Score
1.02%
Published
2005-05-02
Updated
2016-10-18
2 vulnerabilities found