CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Admin Panel of PHP Scripts Mall Advance Peer to Peer MLM Script v1.7.0 allows remote attackers to bypass intended access restrictions by directly navigating to admin/dashboard.php or admin/user.php, as demonstrated by disclosure of information about users and staff...

7.5CVSS7.2AI score

Exploits0References1

Prion•added 2019/01/11 5:29 a.m.•12 views

Design/Logic Flaw

5CVSS7.5AI score0.0025EPSS

Exploits0References1Affected Software1

NVD•added 2018/02/07 9:29 p.m.•10 views

CVE-2018-6796

PHP Scripts Mall Multilanguage Real Estate MLM Script 3.0 has Stored XSS via every profile input field...

5.4CVSS5.3AI score0.00181EPSS

Exploits1References1

CVE•added 2018/02/07 9:0 p.m.•34 views

CVE-2018-6796

CVE-2018-6796 affects the PHP Scripts Mall Multilanguage Real Estate MLM Script 3.0. The connected CNVD/CNVD entries describe a Stored XSS vulnerability that can be triggered via arbitrary input fields on user profiles. The root cause is input fields not properly sanitizing or encoding data, allo...

5.4CVSS5.2AI score0.00181EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/02/07 9:0 p.m.•11 views

CVE-2018-6796

PHP Scripts Mall Multilanguage Real Estate MLM Script 3.0 has Stored XSS via every profile input field...

5.3AI score0.00181EPSS

Exploits1References1

Packet Storm•added 2018/02/07 12:0 a.m.•22 views

Multilanguage Real Estate MLM Script 3.0 Cross Site Scripting

Exploit Title: Multilanguage Real Estate MLM Script - Stored XSS Date: 06.02.2018 Exploit Author: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Vendor Homepage: https://www.phpscriptsmall.com/ Software Link:...

7.1AI score

Exploits0

Prion•added 2018/01/29 5:29 a.m.•9 views

Sql injection

SQL Injection exists in Multilanguage Real Estate MLM Script through 3.0 via the /product-list.php srch parameter...

7.5CVSS9.8AI score0.02512EPSS

Exploits1References2Affected Software1

CVE•added 2018/01/29 5:0 a.m.•42 views

CVE-2018-6364

Vulnerability : Multilanguage Real Estate MLM Script (3.0 and earlier) has an SQL injection in the srch parameter of /product-list.php . Multiple sources (CNVD/NVD) describe remote, unauthenticated exploitation with high impact to confidentiality, integrity, and availability. CVSSv3.0 base score ...

9.8CVSS9.8AI score0.02512EPSS

Exploits1References2Affected Software1

CNVD•added 2017/12/15 12:0 a.m.•1 views

PHP Scripts Mall Affiliate MLM Script SQL Injection Vulnerability

PHP Scripts Mall Affiliate MLM Script is a set of PHP based product distribution, affiliate website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Affiliate MLM Script version 1.0. A remote attacker can exploit this vulnerability by sending the 'key'...

9.8CVSS8.2AI score0.02512EPSS

Exploits1References1

NVD•added 2017/12/13 9:29 a.m.•8 views

CVE-2017-17598

Affiliate MLM Script 1.0 has SQL Injection via the product-category.php key parameter...

9.8CVSS10AI score0.02512EPSS

Exploits1References2

Prion•added 2017/12/13 9:29 a.m.•9 views

Sql injection

Affiliate MLM Script 1.0 has SQL Injection via the product-category.php key parameter...

7.5CVSS9.9AI score0.02512EPSS

Exploits1References2Affected Software1

Cvelist•added 2017/12/13 9:0 a.m.•11 views

CVE-2017-17598

Affiliate MLM Script 1.0 has SQL Injection via the product-category.php key parameter...

10AI score0.02512EPSS

Exploits1References2

CVE•added 2017/12/13 9:0 a.m.•41 views

CVE-2017-17598

Affiliate MLM Script 1.0 is affected by an SQL injection in product-category.php via the key parameter. The vulnerability is described across multiple sources (NVD/CNVD, CVE); remote attacker can inject SQL commands. Exploitation details and concrete remediation are not provided in the supplied d...

9.8CVSS9.9AI score0.02512EPSS

Exploits1References2Affected Software1

Packet Storm•added 2017/12/11 12:0 a.m.•19 views

Affiliate MLM Script 1.0 SQL Injection

Exploit Title: Affiliate MLM Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/affiliate-mlm-script/ Demo: http://www.smsemailmarketing.in/demo/Affiliate/ Version: 1.0 Category: Webapps Test...

0.5AI score

Exploits0

0day.today•added 2017/12/10 12:0 a.m.•24 views

Affiliate MLM Script 1.0 - product-category.php?key SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Affiliate MLM Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/affiliate-mlm-script/ Demo:...

Exploits0

exploitpack•added 2017/12/09 12:0 a.m.•17 views

Affiliate MLM Script 1.0 - product-category.php?key SQL Injection

Affiliate MLM Script 1.0 - product-category.php?key SQL Injection Exploit Title: Affiliate MLM Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/affiliate-mlm-script/ Demo:...

0.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by