Alstrasoft Template Seller — known CVE vulnerabilities
Every CVE whose affected-product data names Alstrasoft Template Seller, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2007-2776 — CVSS 10.0 (critical): AlstraSoft Template Seller Pro 3.25 and earlier sends a redirect to the web browser but does not exit when administrative credentials are…
CVE-2005-3797 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in payment_paypal.php in AlstraSoft Template Seller Pro 3.25 allows remote attackers to execute…
CVE-2005-3798 — CVSS 7.5 (high): SQL injection vulnerability in admin/index.php in AlstraSoft Template Seller Pro 3.25 allows remote attackers to execute arbitrary SQL…
CVE-2006-4591 — CVSS 7.5 (high): Multiple PHP remote file inclusion vulnerabilities in AlstraSoft Template Seller, and possibly AltraSoft Template Seller Pro 3.25, allow…
CVE-2007-2777 — CVSS 7.5 (high): Unrestricted file upload vulnerability in admin/addsptemplate.php in AlstraSoft Template Seller Pro 3.25 and earlier allows remote…
CVE-2006-0222 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in fullview.php in AlstraSoft Template Seller Pro allows remote attackers to inject arbitrary web…