CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

RedhatCVE•added 2025/05/22 7:32 a.m.•4 views

CVE-2018-6878

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

5.4CVSS6.1AI score0.00181EPSS

Exploits1References1

OSV•added 2018/04/12 10:29 p.m.•1 views

CVE-2018-6903

PHP Scripts Mall Hot Scripts Clone Script Classified v3.1 uses the client side to enforce validation of an e-mail address, which allows remote attackers to modify a registered e-mail address by removing the validation code...

8.8CVSS5.8AI score0.00298EPSS

Exploits1References1

Prion•added 2018/03/06 3:29 p.m.•9 views

Design/Logic Flaw

PHP Scripts Mall Hot Scripts Clone:Script Classified Version 3.1 Application is vulnerable to stored XSS within the "Add New" function for a Management User. Within the "Add New" section, the application does not sanitize user supplied input to the name parameter, and renders injected JavaScript...

3.5CVSS5.1AI score0.00235EPSS

Exploits2References1Affected Software1

NVD•added 2018/03/06 3:29 p.m.•13 views

CVE-2018-7650

4.8CVSS5.1AI score0.00235EPSS

Exploits1References1

Cvelist•added 2018/03/06 3:0 p.m.•9 views

CVE-2018-7650

5AI score0.00235EPSS

Exploits1References1

CVE•added 2018/03/06 3:0 p.m.•36 views

CVE-2018-7650

Summary: CVE-2018-7650 corresponds to a stored XSS in PHP Scripts Mall Hot Scripts Clone:Script Classified Version 3.1, specifically in the Add New section for a Management User. The issue arises because the input in the name parameter is not sanitized, allowing injected JavaScript to be rendered...

4.8CVSS5.1AI score0.00235EPSS

Exploits1References1Affected Software1

CNVD•added 2018/02/26 12:0 a.m.•2 views

PHP Scripts Mall Hot Scripts Clone Script Classified Cross-Site Scripting Vulnerability

PHP Scripts Mall Hot Scripts Clone Script Classified is a set of PHP based information publishing website scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the review section of PHP Scripts Mall Hot Scripts Clone Script Classified version 3.1. A remote attacker can...

5.4CVSS6AI score0.00181EPSS

Exploits1References1

Prion•added 2018/02/09 6:29 p.m.•18 views

Cross site scripting

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

3.5CVSS5AI score0.00181EPSS

Exploits1References1Affected Software1

NVD•added 2018/02/09 6:29 p.m.•10 views

CVE-2018-6878

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

5.4CVSS5AI score0.00181EPSS

Exploits1References1

CVE•added 2018/02/09 6:0 p.m.•34 views

CVE-2018-6878

The connected sources confirm CVE-2018-6878 affects PHP Scripts Mall Hot Scripts Clone Script Classified 3.1, with a Cross Site Scripting (XSS) vulnerability in the review section exploitable via the title or description fields. The documents do not specify whether the issue is stored or reflecte...

5.4CVSS5AI score0.00181EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/02/09 6:0 p.m.•13 views

CVE-2018-6878

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

5AI score0.00181EPSS

Exploits1References1

Exploit DB•added 2018/02/07 12:0 a.m.•19 views

Hot Scripts Clone Script Classified - Persistent Cross-Site Scripting

Hot Scripts Clone Script Classified - Persistent Cross-Site Scripting. Webapps exploit for PHP platform. Tags: Cross-Site Scripting XSS Exploit Title: Hot Scripts Clone : Script Classified - Stored XSS Date: 06.02.2018 Exploit Author: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Vend...

6.2AI score

Exploits0

Exploit DB•added 2018/01/28 12:0 a.m.•64 views

Hot Scripts Clone - 'subctid' SQL Injection

Exploit Title: Hot Scripts Clone Script 1.0 - SQL Injection Dork: N/A Date: 27.01.2018 Vendor Homepage: http://www.phpscriptsmall.com/ Software Link: http://www.exclusivescript.com/product/M72g4502563/php-scripts/hot-scripts-clone-:-script-classified Version: 1.0 Category: Webapps Tested on:...

7.4AI score

Exploits0

CNVD•added 2017/12/15 12:0 a.m.•2 views

PHP Scripts Mall Hot Scripts Clone SQL Injection Vulnerability

PHP Scripts Mall Hot Scripts Clone is a set of PHP based classifieds posting scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Hot Scripts Clone version 3.1. A remote attacker can exploit the vulnerability by sending the 'prid' or 'mctid' parameter to...

9.8CVSS8.1AI score0.03786EPSS

Exploits1References1

NVD•added 2017/12/13 9:29 a.m.•10 views

CVE-2017-17612

Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter...

9.8CVSS10AI score0.03786EPSS

Exploits1References3

Prion•added 2017/12/13 9:29 a.m.•8 views

Sql injection

Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter...

7.5CVSS9.9AI score0.03786EPSS

Exploits1References3Affected Software1

CVE•added 2017/12/13 9:0 a.m.•36 views

CVE-2017-17612

The CVE-2017-17612 entry applies to Hot Scripts Clone 3.1 (from PHP Scripts Mall). A SQL injection vulnerability exists in the /categories endpoint via the subctid/mctid parameters, enabling manipulation of SQL commands by an attacker. Public references show explotation tooling linked to Exploit-...

9.8CVSS9.9AI score0.03786EPSS

Exploits1References3Affected Software1

exploitpack•added 2017/12/11 12:0 a.m.•10 views

Hot Scripts Clone 3.1 - subctid mctid SQL Injection

Hot Scripts Clone 3.1 - subctid mctid SQL Injection Exploit Title: Hot Scripts Clone 3.1 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/hot-scripts-clone-script-classified/ Version: 3.1 Category:...

Exploits0

0day.today•added 2017/12/11 12:0 a.m.•18 views

Hot Scripts Clone 3.1 - subctid / mctid SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Hot Scripts Clone 3.1 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/hot-scripts-clone-script-classified/ Version: 3.1 Category:...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•21 views

Scripts Genie Hot Scripts Clone (showcategory.php, cid param) - SQL Injection Vulnerability

No description provided by source. -+=--+=--+=--+=--+=--+=--+=--+=--+=--+=- + Security Flaw + -+=--+=--+=--+=--+=--+=--+=--+=--+=--+=- + + + /\ \ | | + +/ |/ / | | | |/ / / \ | + +\ \ / | || / /\ / / | + +|/||,\ / || + -+=--+=--+=--+=--+=--+=--+=--+=--+=--+-+ +Scripts Genie Hot Scripts...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by