Clone Script Security Vulnerabilities

CVE-2009-2424

Cross-site scripting (XSS) vulnerability in search.php in Ebay Clone 2009 allows remote attackers to inject arbitrary web script or HTML via the mode...

CVE-2009-4858

Cross-site scripting (XSS) vulnerability in questiondetail.php in Yahoo Answers Clone allows remote attackers to inject arbitrary web script or HTML via the questionid...

CVE-2018-9328

PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the ter_from or tag parameter to...

CVE-2018-6878

Cross Site Scripting (XSS) exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description...

CVE-2019-6248

PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script 2.0.1 has Reflected XSS via the srch parameter, as demonstrated by...

CVE-2015-4658

Multiple SQL injection vulnerabilities in admin/login.php in Milw0rm Clone Script 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) usr or (2) pwd...

CVE-2018-15185

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position"...

CVE-2018-15184

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to...

CVE-2018-15183

PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title...

CVE-2018-11514

PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in edit_resume_det.php, as demonstrated by changing .docx to...

CVE-2018-6903

PHP Scripts Mall Hot Scripts Clone Script Classified v3.1 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation...

CVE-2018-9857

PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php (aka the "View Search By Id"...

CVE-2018-6867

Cross Site Scripting (XSS) exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile...

CVE-2018-6868

Cross Site Scripting (XSS) exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field...

CVE-2018-6845

PHP Scripts Mall Multi Language Olx Clone Script 2.0.6 has XSS via the Leave Comment...

CVE-2018-6858

Cross Site Scripting (XSS) exists in PHP Scripts Mall Facebook Clone...

CVE-2018-6795

PHP Scripts Mall Naukri Clone Script 3.0.3 has Stored XSS via every profile input...

CVE-2017-17931

PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username...

CVE-2017-17641

Resume Clone Script 2.0.5 has SQL Injection via the preview.php id...

CVE-2017-17638

Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php state_id...

CVE-2017-17621

Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail...

CVE-2017-17615

Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php id...

CVE-2017-17618

Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid...

CVE-2017-17617

Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q...

CVE-2017-17605

Consumer Complaints Clone Script 1.0 has SQL Injection via the other-user-profile.php id...

CVE-2017-17597

Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search...

CVE-2017-15993

Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid...

CVE-2015-4137

SQL injection vulnerability in related.php in Milw0rm Clone Script 1.0 allows remote attackers to execute arbitrary SQL commands via the program...

CVE-2011-5190

Multiple cross-site scripting (XSS) vulnerabilities in Social Book Facebook Clone 2010 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO parameter to (1) signup.php, (2) lostpass.php, (3) login.php, (4) index.php, (5) help_tos.php, (6) help_contact.php, or (7)...

CVE-2010-2144

Cross-site scripting (XSS) vulnerability in signinform.php in Zeeways eBay Clone Auction Script allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: some of these details are obtained from third party...

CVE-2009-2588

Multiple cross-site scripting (XSS) vulnerabilities in Hotscripts Type PHP Clone Script allow remote attackers to inject arbitrary web script or HTML via the msg parameter to (1) feedback.php, (2) index.php, and (3)...

CVE-2008-6162

Bux.to Clone script allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1 and the usNick cookie to...

CVE-2008-5971

Cross-site scripting (XSS) vulnerability in profile_social.php in i-Net Solution Orkut Clone allows remote authenticated users to inject arbitrary web script or HTML via the id...

CVE-2008-0687

Cross-site scripting (XSS) vulnerability in siteadmin/editor_files/includes/load_message.php in the Youtube Clone Script allows remote attackers to inject arbitrary web script or HTML via the lang[please_wait]...

CVE-2007-6084

SQL injection vulnerability in software-description.php in HotScripts Clone Script allows remote attackers to execute arbitrary SQL commands via the id...

CVE-2007-3773

Cross-site request forgery (CSRF) vulnerability in the Email-Template module in Generic YouTube Clone Script allows remote attackers to upload files with arbitrary file types to templates/emails/ as...

CVE-2007-3518

SQL injection vulnerability in msg.php in HispaH YouTube Clone Script (youtubeclone) allows remote attackers to execute arbitrary SQL commands via the id...