CVE-2018-20633 (advance_b2b_script)

PHP Scripts Mall Advance B2B Script 2.1.4 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature.
Source: NIST