CVE-2018-10049

Name of the Vulnerable Software and Affected Versions: iScripts eSwap version 2.4

Description: The issue is related to a security problem where an attacker can inject malicious code. This is possible due to insufficient input validation in the txtDate parameter, which is part of the "registration settings.php" file in the Admin Panel.

Recommendations: For iScripts eSwap version 2.4, ensure proper validation and sanitization of user input for the txtDate parameter in the "registration settings.php" file to prevent malicious code injection. As a temporary workaround, consider restricting access to the Admin Panel until a proper fix is applied.