Lucene search
K

35 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-8767

Malware in sbrugna...

9.8CVSS9.5AI score0.0305EPSS
Exploits1References3
CNVD
CNVD
added 2019/06/10 12:0 a.m.3 views

PHP Scripts Mall Chartered Accountant:Auditor Website Cross-Site Scripting Vulnerability

PHP Scripts Mall Chartered Accountant:Auditor Website is an accounting auditor website system script from PHP Scripts Mall, India. A cross-site scripting vulnerability exists in the Profile Update page in PHP Scripts Mall Chartered Accountant : Auditor Website version 2.0.1, which can be exploite...

5.4CVSS6.5AI score0.00653EPSS
Exploits1References1
NVD
NVD
added 2019/06/06 4:29 p.m.22 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.4CVSS5.3AI score0.00653EPSS
Exploits1References1
Prion
Prion
added 2019/06/06 4:29 p.m.14 views

Cross site scripting

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

3.5CVSS5.3AI score0.00653EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2019/06/06 12:0 a.m.6 views

PT-2019-18644 · Php Scripts Mall · Php Scripts Mall Chartered Accountant : Auditor Website

Name of the Vulnerable Software and Affected Versions: PHP Scripts Mall Chartered Accountant : Auditor Website version 2.0.1 Description: The issue concerns a Stored XSS in the Profile Update page. Specifically, the My Name field is vulnerable, allowing for potential exploitation. Recommendations...

5.4CVSS5.3AI score0.00653EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/06/06 12:0 a.m.26 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.3AI score0.00653EPSS
Exploits1References1
CVE
CVE
added 2019/06/06 12:0 a.m.122 views

CVE-2019-7553

CVE-2019-7553 affects PHP Scripts Mall Chartered Accountant: Auditor Website version 2.0.1, with a Stored XSS in the Profile Update page via the My Name field. Several sources (Red Hat advisory, CNVD, CVE listings, and PT-2019-18644) confirm the vulnerability type as stored XSS and point to the s...

5.4CVSS5.2AI score0.00653EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/03/21 4:0 p.m.4 views

CVE-2018-20636

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field...

5.4CVSS5.8AI score0.00653EPSS
Exploits1References1
NVD
NVD
added 2019/03/21 4:0 p.m.17 views

CVE-2018-20636

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field...

5.4CVSS5.8AI score0.00653EPSS
Exploits1References1
NVD
NVD
added 2019/03/21 4:0 p.m.18 views

CVE-2018-20638

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

6.5CVSS6.6AI score0.01425EPSS
Exploits1References1
OSV
OSV
added 2019/03/21 4:0 p.m.6 views

CVE-2018-20638

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

6.5CVSS5.8AI score0.01425EPSS
Exploits1References1
Prion
Prion
added 2019/03/21 4:0 p.m.13 views

Design/Logic Flaw

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field...

3.5CVSS5.8AI score0.00653EPSS
Exploits1References1
Prion
Prion
added 2019/03/21 4:0 p.m.13 views

Directory traversal

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

4CVSS6.6AI score0.01425EPSS
Exploits1References1
Prion
Prion
added 2019/03/21 4:0 p.m.16 views

Code injection

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 allows remote attackers to cause a denial of service unrecoverable blank profile via crafted JavaScript code in the First Name and Last Name field...

4CVSS6.5AI score0.01581EPSS
Exploits1References1
CVE
CVE
added 2019/03/20 6:49 p.m.38 views

CVE-2018-20638

CVE-2018-20638 affects PHP Scripts Mall Chartered Accountant: Auditor Website 2.0.1 and describes a directory traversal vulnerability that allows a direct request to list files in an image directory (e.g., assets/). The connected documents corroborate a path disclosure via directory listing; no e...

6.5CVSS6.5AI score0.01425EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/03/20 6:49 p.m.24 views

CVE-2018-20638

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

6.6AI score0.01425EPSS
Exploits1References1
CVE
CVE
added 2019/03/20 6:46 p.m.46 views

CVE-2018-20637

CVE-2018-20637 affects PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1. The vulnerability allows remote attackers to cause a denial of service (unrecoverable blank profile) by sending crafted JavaScript in the First Name and Last Name fields. Documented impact per CVSS metrics shows...

6.5CVSS6.5AI score0.01581EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/03/20 6:43 p.m.40 views

CVE-2018-20636

CVE-2018-20636 affects PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1. The vulnerability is HTML injection via the First Name field. Public references confirm the product/version and injection class; CVSS v3.0 base score is 5.4 (MEDIUM) with network access and user interaction requ...

5.4CVSS5.8AI score0.00653EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/03/20 6:43 p.m.21 views

CVE-2018-20636

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field...

5.8AI score0.00653EPSS
Exploits1References1
Prion
Prion
added 2018/08/10 3:29 p.m.17 views

Cross site request forgery (csrf)

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php...

6.8CVSS8.8AI score0.00512EPSS
Exploits1References1
Rows per page
Query Builder