5 matches found
CVE-2018-6878
Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...
Design/Logic Flaw
PHP Scripts Mall Hot Scripts Clone:Script Classified Version 3.1 Application is vulnerable to stored XSS within the "Add New" function for a Management User. Within the "Add New" section, the application does not sanitize user supplied input to the name parameter, and renders injected JavaScript...
CVE-2018-7650
PHP Scripts Mall Hot Scripts Clone:Script Classified Version 3.1 Application is vulnerable to stored XSS within the "Add New" function for a Management User. Within the "Add New" section, the application does not sanitize user supplied input to the name parameter, and renders injected JavaScript...
CVE-2018-6878
Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...
CVE-2018-6878
The connected sources confirm CVE-2018-6878 affects PHP Scripts Mall Hot Scripts Clone Script Classified 3.1, with a Cross Site Scripting (XSS) vulnerability in the review section exploitable via the title or description fields. The documents do not specify whether the issue is stored or reflecte...