CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

126 matches found

Cvelist•added 2022/07/16 6:15 a.m.•20 views

CVE-2017-20133 Itech Job Portal Script admin improper authentication

A vulnerability, which was classified as critical, was found in Itech Job Portal Script 9.13. This affects an unknown part of the file /admin. The manipulation leads to improper authentication. It is possible to initiate the attack remotely...

7.3CVSS9.5AI score0.00332EPSS

Exploits0References1

Vulnrichment•added 2022/07/16 6:15 a.m.•4 views

CVE-2017-20133 Itech Job Portal Script admin improper authentication

7.3CVSS6.9AI score0.00332EPSS

Exploits0References1

CNNVD•added 2022/07/16 12:0 a.m.•2 views

Ambit Technologies iTech Job Portal Script 授权问题漏洞

Ambit Technologies iTech Job Portal Script is an efficient interactive platform from Ambit Technologies India. One can post their vacancy profile on one side and candidates can post their resume on the other side. Ambit Technologies iTech Job Portal Script version 9.13 suffers from a security...

9.8CVSS8.3AI score0.00332EPSS

Exploits0References2

OSV•added 2019/03/21 4:0 p.m.•2 views

CVE-2018-20641

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery CSRF via the Edit Profile feature...

8.8CVSS5.8AI score0.00145EPSS

Exploits1References1

OSV•added 2019/03/21 4:0 p.m.•3 views

CVE-2018-20643

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

6.5CVSS5.8AI score0.00485EPSS

Exploits1References1

NVD•added 2019/03/21 4:0 p.m.•22 views

CVE-2018-20641

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery CSRF via the Edit Profile feature...

8.8CVSS9AI score0.00145EPSS

Exploits1References1

OSV•added 2019/03/21 4:0 p.m.•3 views

CVE-2018-20640

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting XSS via the Full Name field...

5.4CVSS5.8AI score0.00206EPSS

Exploits1References1

OSV•added 2019/03/21 4:0 p.m.•5 views

CVE-2018-20639

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar...

6.1CVSS5.8AI score0.0024EPSS

Exploits1References1

Prion•added 2019/03/21 4:0 p.m.•14 views

Directory traversal

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

4CVSS6.6AI score0.00485EPSS

Exploits1References1Affected Software1

CNVD•added 2019/03/21 12:0 a.m.•2 views

PHP Scripts Mall Entrepreneur Job Portal Script Cross-Site Request Forgery Vulnerability

PHP Scripts Mall Entrepreneur Job Portal Script is a PHP script that allows you to create your own job portal. PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 suffers from a cross-site request forgery vulnerability that can be exploited via the Edit Profile feature...

8.8CVSS7.1AI score0.00145EPSS

Exploits1References1

Cvelist•added 2019/03/20 7:3 p.m.•25 views

CVE-2018-20642

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote attackers to cause a denial of service outage of profile editing via crafted JavaScript code in the KeySkills field...

6.6AI score0.00539EPSS

Exploits1References1

CVE•added 2019/03/20 7:3 p.m.•41 views

CVE-2018-20642

CVE-2018-20642 affects PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1. The vulnerability is triggered by crafted JavaScript in the KeySkills field, causing a denial of service (outage of profile editing). Documents confirm the affected product and root cause (malformed input in KeySkills) ...

6.5CVSS6.5AI score0.00539EPSS

Exploits1References1Affected Software1

CVE•added 2019/03/20 6:58 p.m.•42 views

CVE-2018-20640

The vulnerability described for CVE-2018-20640 affects the PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1. It is a stored Cross-Site Scripting (XSS) vulnerability triggered via the Full Name field, as indicated across multiple sources (NVD entry and mirrored records). The root cause detail...

5.4CVSS5.3AI score0.00206EPSS

Exploits1References1Affected Software1

Prion•added 2018/05/21 2:29 p.m.•13 views

Cross site request forgery (csrf)

Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely...

4.3CVSS6.4AI score0.00113EPSS

Exploits1References1Affected Software1

CVE•added 2018/05/21 2:0 p.m.•39 views

CVE-2018-11096

The CVE-2018-11096 entry concerns Horse Market Sell & Rent Portal Script version 1.5.7, which is vulnerable to cross-site request forgery (CSRF). This flaw could allow an attacker to remotely alter all target account information. Multiple connected records corroborate a CSRF issue affecting the s...

6.5CVSS6.4AI score0.00113EPSS

Exploits1References1Affected Software1

Packet Storm•added 2018/05/16 12:0 a.m.•39 views

Horse Market Sell And Rent Portal Script 1.5.7 CSRF

Exploit Title: Horse Market Sell & Rent Portal Script 1.5.7 - Cross-Site Request Forgery Date: 2018-05-15 Exploit Author: L0RD Vendor Homepage: https://codecanyon.net/item/horse-market-sell-rent-portal/14174352?srank=1725 CVE: N/A Version: 1.5.7 Tested on: Kali linux Details: Horse Market Sell &...

7.4AI score

Exploits0

NVD•added 2018/02/28 3:29 p.m.•19 views

CVE-2018-7469

PHP Scripts Mall Entrepreneur Job Portal Script 2.0.9 has XSS via the pname aka Edit Category Name field to admin/categoriesindustry.php aka Categories - Industry Type...

4.8CVSS5AI score0.00235EPSS

Exploits1References1

CNVD•added 2017/12/15 12:0 a.m.•4 views

PHP Scripts Mall Entrepreneur Job Portal Script SQL Injection Vulnerability

PHP Scripts Mall Entrepreneur Job Portal Script is a set of PHP based recruitment, job search website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Entrepreneur Job Portal Script version 2.0.6. The vulnerability can be exploited by remote attackers to...

9.8CVSS8.4AI score0.02512EPSS

Exploits1References1

CVE•added 2017/12/13 9:0 a.m.•46 views

CVE-2017-17596

Entrepreneur Job Portal Script 2.0.6 contains a SQL Injection (CVE-2017-17596) in the jobsearch_all.php rid1 parameter. This affects the PHP Scripts Mall Entrepreneur Job Portal Script and enables remote injection of SQL commands via the rid1 input. Public exploits exist (e.g., Exploit-DB, Packet...

9.8CVSS9.9AI score0.02512EPSS

Exploits1References2Affected Software1

0day.today•added 2017/12/10 12:0 a.m.•18 views

Entrepreneur Job Portal Script 2.0.6 - jobsearch_all.php?rid1 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Entrepreneur Job Portal Script 2.0.6 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/entrepreneur-job-portal-script/ Demo:...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by