Stored XSS Vulnerability in Investment MLM Software 2.0.2

CVE-2019-7552 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section.

Learn more about our Web Application Penetration Testing UK.