Easyservice Billing Project - Easyservice Billing CVE

Filtered by vendor Easyservice Billing Project Subscribe

Filtered by product Easyservice Billing

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-11445	1 Easyservice Billing Project	1 Easyservice Billing	2018-07-02	6.8 MEDIUM	8.8 HIGH
A CSRF issue was discovered on the User Add/System Settings Page (system-settings-user-new2.php) in EasyService Billing 1.0. A User can be added with the Admin role.
CVE-2018-11442	1 Easyservice Billing Project	1 Easyservice Billing	2018-07-02	6.8 MEDIUM	8.8 HIGH
A CSRF issue was discovered in EasyService Billing 1.0, which was triggered via a quotation-new3-new2.php?add=true&id= URI, as demonstrated by adding a new quotation.

Vulnerabilities (CVE)