CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

582 matches found

NVD•added 2018/02/23 1:29 p.m.•30 views

CVE-2018-6868

Cross Site Scripting XSS exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter...

5.4CVSS5.3AI score0.00575EPSS

Exploits5References1

NVD•added 2018/02/23 1:29 p.m.•29 views

CVE-2018-6867

Cross Site Scripting XSS exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter...

5.4CVSS5.3AI score0.00699EPSS

Exploits4References2

Cvelist•added 2018/02/23 1:0 p.m.•24 views

CVE-2018-6866

Cross Site Scripting XSS exists in PHP Scripts Mall Learning and Examination Management System Script 2.3.1 via a crafted message...

5.3AI score0.01568EPSS

Exploits4References1

Cvelist•added 2018/02/23 1:0 p.m.•26 views

CVE-2018-6868

Cross Site Scripting XSS exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter...

5.3AI score0.00575EPSS

Exploits5References1

CVE•added 2018/02/23 1:0 p.m.•48 views

CVE-2018-6868

CVE-2018-6868 affects PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script 3.0.2. The issue is a Cross-Site Scripting vulnerability exposed via a User Profile Field parameter in the web app. PoC and multiple public exploits indicate a stored XSS vector, demonstrated in PoC examples (e.g., sc...

5.4CVSS5.2AI score0.00575EPSS

Exploits5References1Affected Software1

CVE•added 2018/02/23 1:0 p.m.•51 views

CVE-2018-6867

CVE-2018-6867 affects PHP Scripts Mall Alibaba Clone Script 1.0.2. The issue is a Cross-Site Scripting (XSS) vulnerability exploitable via the profile parameter, as described in multiple sources and evidenced by PoC/exploit references (e.g., exploit-db, 0day.today, Packet Storm). Public writeups ...

5.4CVSS5.2AI score0.00699EPSS

Exploits4References2Affected Software1

Cvelist•added 2018/02/23 1:0 p.m.•28 views

CVE-2018-6867

Cross Site Scripting XSS exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter...

5.3AI score0.00699EPSS

Exploits4References2

CVE•added 2018/02/23 1:0 p.m.•40 views

CVE-2018-6866

CVE-2018-6866 affects PHP Scripts Mall Learning and Examination Management System Script 2.3.1. The connected documents describe a Cross Site Scripting (XSS) vulnerability in the system, exploitable through a crafted message in the messaging feature. PoCs and exploits (e.g., Exploit-DB and 0day l...

5.4CVSS5.2AI score0.01568EPSS

Exploits4References1Affected Software1

OSV•added 2018/02/13 5:29 p.m.•4 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

9.8CVSS5.8AI score0.0172EPSS

Exploits1References1

NVD•added 2018/02/13 5:29 p.m.•18 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

9.8CVSS9.9AI score0.0172EPSS

Exploits1References1

CVE•added 2018/02/13 5:0 p.m.•39 views

CVE-2018-6928

CVE-2018-6928 affects PHP Scripts Mall News Website Script 2.0.4, with a SQL Injection vulnerability in the search term parameter. Root cause is improper handling of user input allowing unauthorized SQL execution. Impact per sources is high: potential leakage of data, data alteration, and disrupt...

9.8CVSS9.8AI score0.0172EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/02/13 5:0 p.m.•19 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

10AI score0.0172EPSS

Exploits1References1

OSV•added 2018/02/12 3:29 a.m.•1 views

CVE-2018-6862

Cross Site Scripting XSS exists in PHP Scripts Mall Bitcoin MLM Software 1.0.2 via a profile field...

5.4CVSS5.8AI score

Exploits0References1