Lucene search
K

691 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:42 a.m.6 views

CVE-2017-17959

PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the seller-view.php usid parameter...

9.8CVSS8.1AI score0.01171EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:25 a.m.9 views

CVE-2019-7552

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

5.4CVSS5.9AI score0.00707EPSS
Exploits1References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.2 views

PHP Scripts Mall Bitcoin MLM Software Cross-Site Scripting Vulnerability

PHP Scripts Mall Bitcoin MLM Software is a PHP-based bitcoin management software from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Bitcoin MLM Software version 1.0.2. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

6.2AI score
Exploits0References1
CNVD
CNVD
added 2020/01/07 12:0 a.m.4 views

PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability

PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the 'searchtext' parameter of the search-results.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability...

6.1CVSS6.5AI score0.007EPSS
Exploits1References1
OSV
OSV
added 2020/01/05 10:15 p.m.3 views

CVE-2019-20337

In PHP Scripts Mall advanced-real-estate-script 4.0.9, the newsedit.php newsid parameter is vulnerable to SQL Injection...

7.2CVSS5.8AI score0.0104EPSS
Exploits1References1
CVE
CVE
added 2020/01/05 9:6 p.m.80 views

CVE-2019-20337

Summary: CVE-2019-20337 affects PHP Scripts Mall advanced-real-estate-script 4.0.9. The vulnerability is in news_edit.php, where the news_id parameter is vulnerable to SQL Injection. The root cause is improper input validation/sanitization of externally provided SQL statements. Reported impact in...

7.2CVSS7.2AI score0.0104EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2019/07/16 12:0 a.m.3 views

PHP Scripts Mall School College Portal with ERP Script Cross-Site Scripting Vulnerability

PHP Scripts Mall School College Portal with ERP Script is a school management system from PHP Scripts Mall India. A cross-site scripting vulnerability exists in /pro-school/index.php?student/message/sendreply/ in PHP Scripts Mall School College Portal with ERP Script 2.6.1 and earlier versions. T...

6.1CVSS6.5AI score0.00675EPSS
Exploits1References1
CNVD
CNVD
added 2019/06/10 12:0 a.m.2 views

PHP Scripts Mall API Based Travel Booking Cross Site Scripting Vulnerability

PHP Scripts Mall API Based Travel Booking is an online travel booking system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall API Based Travel Booking version 3.4.7, which can be exploited by an attacker to execute client-side code...

6.1CVSS6.5AI score0.00876EPSS
Exploits1References1
CNVD
CNVD
added 2019/06/10 12:0 a.m.2 views

PHP Scripts Mall Chartered Accountant:Auditor Website Cross-Site Scripting Vulnerability

PHP Scripts Mall Chartered Accountant:Auditor Website is an accounting auditor website system script from PHP Scripts Mall, India. A cross-site scripting vulnerability exists in the Profile Update page in PHP Scripts Mall Chartered Accountant : Auditor Website version 2.0.1, which can be exploite...

5.4CVSS6.5AI score0.00653EPSS
Exploits1References1
NVD
NVD
added 2019/06/06 4:29 p.m.20 views

CVE-2019-7554

An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...

6.1CVSS6.1AI score0.00876EPSS
Exploits1References2
NVD
NVD
added 2019/06/06 4:29 p.m.21 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.4CVSS5.3AI score0.00653EPSS
Exploits1References1
OSV
OSV
added 2019/06/06 4:29 p.m.5 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.4CVSS6.1AI score0.00653EPSS
Exploits1References1
NVD
NVD
added 2019/06/06 4:29 p.m.26 views

CVE-2019-7552

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

5.4CVSS5.3AI score0.00707EPSS
Exploits1References2
Prion
Prion
added 2019/06/06 4:29 p.m.13 views

Cross site scripting

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

3.5CVSS5.3AI score0.00653EPSS
Exploits1References1
Prion
Prion
added 2019/06/06 4:29 p.m.15 views

Cross site scripting

An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...

4.3CVSS6AI score0.00876EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2019/06/06 4:29 p.m.20 views

Design/Logic Flaw

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

3.5CVSS5.2AI score0.00707EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/06/06 3:36 p.m.27 views

CVE-2019-7552

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

5.3AI score0.00707EPSS
Exploits1References2
CVE
CVE
added 2019/06/06 3:36 p.m.108 views

CVE-2019-7552

CVE-2019-7552 affects PHP Scripts Mall Investment MLM Software 2.0.2. The vulnerability is a Stored XSS in the My Profile Section due to lack of input sanitization in the Edit Name field. Connected sources (Red Hat, CNVD, NVD entries, and related records) corroborate the XSS issue in this softwar...

5.4CVSS5.2AI score0.00707EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2019/06/06 3:27 p.m.101 views

CVE-2019-7554

The vulnerability CVE-2019-7554 affects PHP Scripts Mall API Based Travel Booking 3.4.7. It is a reflected cross-site scripting (XSS) flaw exploitable via the flight-results.php d2 parameter, which can cause client-side script execution. The issue stems from input reflected back to the user; expl...

6.1CVSS6AI score0.00876EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/06/06 12:0 a.m.24 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.3AI score0.00653EPSS
Exploits1References1
Rows per page
Query Builder