Lucene search

Naukri Clone Script Security Vulnerabilities

cve

CVE-2018-11514

PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in edit_resume_det.php, as demonstrated by changing .docx to .php.

8.8CVSS

8.6AI Score

0.001EPSS

2018-05-28 02:29 PM

cve

CVE-2018-15184

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.

5.4CVSS

5.2AI Score

0.001EPSS

2018-08-09 07:29 PM

cve

CVE-2018-15185

PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position" field.

6.5CVSS

6.6AI Score

0.001EPSS

2018-08-10 03:29 PM

cve

CVE-2018-6795

PHP Scripts Mall Naukri Clone Script 3.0.3 has Stored XSS via every profile input field.

5.4CVSS

5.2AI Score

0.0005EPSS

2018-02-07 09:29 PM