691 matches found
CVE-2017-17959
PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the seller-view.php usid parameter...
CVE-2019-7552
An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...
PHP Scripts Mall Bitcoin MLM Software Cross-Site Scripting Vulnerability
PHP Scripts Mall Bitcoin MLM Software is a PHP-based bitcoin management software from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Bitcoin MLM Software version 1.0.2. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability
PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the 'searchtext' parameter of the search-results.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability...
CVE-2019-20337
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the newsedit.php newsid parameter is vulnerable to SQL Injection...
CVE-2019-20337
Summary: CVE-2019-20337 affects PHP Scripts Mall advanced-real-estate-script 4.0.9. The vulnerability is in news_edit.php, where the news_id parameter is vulnerable to SQL Injection. The root cause is improper input validation/sanitization of externally provided SQL statements. Reported impact in...
PHP Scripts Mall School College Portal with ERP Script Cross-Site Scripting Vulnerability
PHP Scripts Mall School College Portal with ERP Script is a school management system from PHP Scripts Mall India. A cross-site scripting vulnerability exists in /pro-school/index.php?student/message/sendreply/ in PHP Scripts Mall School College Portal with ERP Script 2.6.1 and earlier versions. T...
PHP Scripts Mall API Based Travel Booking Cross Site Scripting Vulnerability
PHP Scripts Mall API Based Travel Booking is an online travel booking system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall API Based Travel Booking version 3.4.7, which can be exploited by an attacker to execute client-side code...
PHP Scripts Mall Chartered Accountant:Auditor Website Cross-Site Scripting Vulnerability
PHP Scripts Mall Chartered Accountant:Auditor Website is an accounting auditor website system script from PHP Scripts Mall, India. A cross-site scripting vulnerability exists in the Profile Update page in PHP Scripts Mall Chartered Accountant : Auditor Website version 2.0.1, which can be exploite...
CVE-2019-7554
An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...
CVE-2019-7553
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...
CVE-2019-7553
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...
CVE-2019-7552
An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...
Cross site scripting
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...
Cross site scripting
An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...
Design/Logic Flaw
An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...
CVE-2019-7552
An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...
CVE-2019-7552
CVE-2019-7552 affects PHP Scripts Mall Investment MLM Software 2.0.2. The vulnerability is a Stored XSS in the My Profile Section due to lack of input sanitization in the Edit Name field. Connected sources (Red Hat, CNVD, NVD entries, and related records) corroborate the XSS issue in this softwar...
CVE-2019-7554
The vulnerability CVE-2019-7554 affects PHP Scripts Mall API Based Travel Booking 3.4.7. It is a reflected cross-site scripting (XSS) flaw exploitable via the flight-results.php d2 parameter, which can cause client-side script execution. The issue stems from input reflected back to the user; expl...
CVE-2019-7553
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...