3098 matches found
CVE-2018-11514
PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in editresumedet.php, as demonstrated by changing .docx to .php...
Unrestricted file upload
PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in editresumedet.php, as demonstrated by changing .docx to .php...
CVE-2018-11514
PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in editresumedet.php, as demonstrated by changing .docx to .php...
CVE-2018-11514
The CVE affects PHP Scripts Mall Naukri Clone Script (version 3.0.3 and earlier). The vulnerability resides in edit_resume_det.php, allowing Unrestricted Upload of a File with a Dangerous Type (e.g., renaming .docx to .php). This could enable an attacker to upload a malicious PHP file, potentiall...
Gitmails - An Information Gathering Tool To Colect Git Commit Emails In Version Control Host Services
An information gathering tool to colect git commit emails in version control host services. Overview Gitmails explores that git commits contains a name and an email configured by the author and that version control host services are being used to store a lot of projects. What Gitmails does is:...
CVE-2018-6903
PHP Scripts Mall Hot Scripts Clone Script Classified v3.1 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation code...
CVE-2018-6903
PHP Scripts Mall Hot Scripts Clone Script Classified v3.1 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation code...
CVE-2018-6903
CVE-2018-6903 affects PHP Scripts Mall Hot Scripts Clone Script Classified v3.1, where client-side validation of an email address can be bypassed by removing the validation code. This client-side enforcement allows a remote attacker to modify a registered email address. The provided documents con...
CVE-2018-6903
PHP Scripts Mall Hot Scripts Clone Script Classified v3.1 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation code...
Bad Ducky - Rubber Ducky Compatible Clone Based On CJMCU BadUSB HW
Bad Ducky is yet another Rubber Ducky clone. It is based on CJMCU BadUsb ATMEGA32u4 - Arduino Leonardo clone board with onboard card reader, which you can buy on ebay or aliexpress. My goal was to create something compatible with Rubber Ducky scripts, while having ability to easily choose which...
Design/Logic Flaw
PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php aka the "View Search By Id" screen...
CVE-2018-9857
PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php aka the "View Search By Id" screen...
CVE-2018-9857
PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php aka the "View Search By Id" screen...
CVE-2018-9857
CVE-2018-9857 concerns PHP Scripts Mall Match Clone Script 1.0.4. The vulnerability is a Cross-Site Scripting (XSS) flaw exposed via the searchbyid.php “View Search By Id” screen in the product’s search field. Attackers can inject arbitrary scripts, as demonstrated by PoCs in the linked exploit r...
PHP Scripts Mall Match Clone Script Cross-Site Scripting Vulnerability
PHP Scripts Mall Match Clone Script is a matrimonial dating software from PHP Scripts Mall India. The program features live chat, privacy protection and member registration. A cross-site scripting vulnerability exists in PHP Scripts Mall Match Clone Script version 1.0.4. A remote attacker can...
Design/Logic Flaw
PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...
CVE-2018-9328
PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...
CVE-2018-9328
PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...
CVE-2018-9328
PHP Scripts Mall Redbus Clone Script 3.0.6 has XSS via the terfrom or tag parameter to results.php...
CVE-2018-9328
CVE-2018-9328 affects PHP Scripts Mall Redbus Clone Script 3.0.6, with reflected XSS through the ter_from or tag parameter to results.php. The root cause is an input handling flaw that allows arbitrary HTML/JS injection via these parameters. No exploits or patch details are provided in the connec...