CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

FS Shutterstock Clone 1.0 is affected by a SQL injection in the /Category keywords parameter, likely via the PHP CodeIgniter-based script. The vulnerability is documented with CVSS v3.1 base score 9.8 (CRITICAL) and CVSS v2 base 7.5 (HIGH). Exploitation is associated with a public exploit entry (...

9.8CVSS9.9AI score0.02377EPSS

Exploits1References2Affected Software1

CVE•added 2017/12/13 9:0 a.m.•46 views

CVE-2017-17570

FS Expedia Clone 1.0 is affected by a SQL injection vulnerability in input parameters to pages.php (id), content.php (id) and show-flight-result.php (fl_orig, fl_dest). The issue stems from unsanitized user input in SQL queries, enabling remote attackers to inject commands. Public reports (Exploi...

9.8CVSS9.9AI score0.02377EPSS

Exploits1References2Affected Software1

CVE•added 2017/12/13 9:0 a.m.•110 views

CVE-2017-17585

FS Monster Clone 1.0 is affected by an SQL injection in Employer_Details.php (id parameter). Root cause: user-controlled input used in SQL query leading to potential data disclosure/modification; CVSS base scores indicate HIGH to CRITICAL severity. Known exploits exist (e.g., exploit-db link) and...

9.8CVSS9.8AI score0.02377EPSS

Exploits1References2Affected Software1

CVE•added 2017/12/13 9:0 a.m.•95 views

CVE-2017-17572

FS Amazon Clone 1.0 is affected by a SQL injection vulnerability exploitable via the PATH_INFO endpoint /VerAyari. Public records attribute the issue to improper handling of PATH_INFO in a PHP/MySQL stack, enabling remote attackers to inject SQL commands. Impact is described as high, with potenti...

9.8CVSS9.8AI score0.02377EPSS

Exploits1References2Affected Software1

Cvelist•added 2017/12/13 9:0 a.m.•11 views

CVE-2017-17597

Nearbuy Clone Script 3.2 has SQL Injection via the categorylist.php search parameter...

10AI score0.02512EPSS

Exploits1References2

Cvelist•added 2017/12/13 9:0 a.m.•13 views

CVE-2017-17571

FS Foodpanda Clone 1.0 has SQL Injection via the /food keywords parameter...

10AI score0.02377EPSS

Exploits1References2

Cvelist•added 2017/12/13 9:0 a.m.•12 views

CVE-2017-17584

FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php florig or fldest parameter...

10AI score0.02377EPSS

Exploits1References2

CVE•added 2017/12/13 9:0 a.m.•50 views

CVE-2017-17621

CVE-2017-17621 affects the Multivendor Penny Auction Clone Script 1.0. The connected sources document a SQL Injection vulnerability that can be triggered via PATH_INFO to the /detail URI, allowing an attacker to inject SQL commands remotely (no authentication required per the CVE data). Several r...

9.8CVSS9.8AI score0.04151EPSS

Exploits1References3Affected Software1

Cvelist•added 2017/12/13 9:0 a.m.•15 views

CVE-2017-17570

FS Expedia Clone 1.0 has SQL Injection via the pages.php or content.php id parameter, or the show-flight-result.php florig or fldest parameter...

10AI score0.02377EPSS

Exploits1References2

CVE•added 2017/12/13 9:0 a.m.•50 views

CVE-2017-17577

FS Trademe Clone 1.0 contains a SQL Injection vulnerability. A remote attacker can exploit unsafely handled inputs in search_item.php (search parameter) or general_item_details.php (id parameter) to inject SQL commands. Root cause: inadequate input sanitization in PHP/MySQL-based scripts. Impact:...

9.8CVSS9.9AI score0.02377EPSS

Exploits1References2Affected Software1

CVE•added 2017/12/13 9:0 a.m.•44 views

CVE-2017-17579

CVE-2017-17579 affects FS Freelancer Clone 1.0 (PHP/MySQL). Multiple connected sources confirm a SQL Injection vulnerability in profile.php with the u parameter (remote exploitation possible). Root cause is unsafely handled input leading to SQL commands being injected. In the CNVD/CNVD-2017-37404...

9.8CVSS9.9AI score0.02377EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by