CVE-2017-17907

CVE-2017-17907 affects PHP Scripts Mall Car Rental Script and is an XSS vulnerability exploitable via the admin/areaedit.php?carid parameter or admin/sitesettings.php?websitename parameter. Public records describe reflected/stored XSS vectors in these parameters, enabling injecting HTML/JS conten...

CVE-2017-17906

PHP Scripts Mall Car Rental Script suffers an SQL Injection vulnerability in the admin/carlistedit.php carid parameter. The issue allows backend database manipulation, with high impact on confidentiality, integrity, and availability (CVSS v3.0 9.8). No remediation details are provided in the supp...

PHP Scripts Mall Readymade Video Sharing Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Readymade Video Sharing Script is a set of PHP based online video sharing website scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Readymade Video Sharing Script. A remote attacker can send a 'search' parameter to the...

PHP Scripts Mall Readymade Job Site Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Readymade Job Site Script is a PHP based job site script by PHP Scripts Mall India. The script includes features like job management, profile management and email notifications. A cross-site scripting vulnerability exists in PHP Scripts Mall Readymade Job Site Script. A remote...

PHP Scripts Mall Readymade Job Site Script Cross Site Request Forgery Vulnerability

PHP Scripts Mall Readymade Job Site Script is a PHP based job site script by PHP Scripts Mall India. The script includes features like job management, profile management and email notifications. A cross-site request forgery vulnerability exists in PHP Scripts Mall Readymade Job Site Script. A...

PHP Scripts Mall Readymade Video Sharing Script Cross-Site Request Forgery Vulnerability

PHP Scripts Mall Readymade Video Sharing Script is a set of PHP based online video sharing website scripts by PHP Scripts Mall India. A cross-site request forgery vulnerability exists in PHP Scripts Mall Readymade Video Sharing Script. A remote attacker can use the user-profile-edit.php file to...

PHP Scripts Mall Readymade Video Sharing Script SQL Injection Vulnerability

PHP Scripts Mall Readymade Video Sharing Script is a set of PHP based online video sharing website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Readymade Video Sharing Script version 3.2. The vulnerability can be exploited by a remote attacker to...

PHP Scripts Mall Lawyer Search Script SQL Injection Vulnerability

PHP Scripts Mall Lawyer Search Script is a set of PHP based law firm management scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Lawyer Search Script version 1.1. A remote attacker can exploit this vulnerability by sending the 'city' parameter to...

PHP Scripts Mall MLM Forced Matrix SQL Injection Vulnerability

PHP Scripts Mall MLM Forced Matrix is a set of PHP based online marketing website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall MLM Forced Matrix version 2.0.9. A remote attacker can exploit the vulnerability by sending the 'newid' parameter to the...

PHP Scripts Mall Basic B2B Script SQL Injection Vulnerability

PHP Scripts Mall Basic B2B Script is a set of PHP-based B2B2 business-to-business transactional website scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Basic B2B Script version 2.0.8. A remote attacker can exploit the vulnerability by sending the 'id'...

PHP Scripts Mall Responsive Events And Movie Ticket Booking Script SQL Injection Vulnerability

PHP Scripts Mall Responsive Events And Movie Ticket Booking Script is a PHP based online movie ticket booking script by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Responsive Events And Movie Ticket Booking Script version 3.2.1. The vulnerability can be...

PHP Scripts Mall Opensource Classified Ads Script SQL Injection Vulnerability

PHP Scripts Mall Opensource Classified Ads Script is a set of PHP based classifieds posting website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Opensource Classified Ads Script version 3.2. A remote attacker can exploit this vulnerability by sending...

PHP Scripts Mall Multireligion Responsive Matrimonial SQL Injection Vulnerability

PHP Scripts Mall Multireligion Responsive Matrimonial is a set of PHP based matrimonial dating website scripts by PHP Scripts Mall India. PHP Scripts Mall Multireligion Responsive Matrimonial version 4.7.2 suffers from a SQL injection vulnerability. A remote attacker can exploit this vulnerabilit...

PHP Scripts Mall Responsive Realestate Script SQL Injection Vulnerability

PHP Scripts Mall Responsive Realestate Script is a PHP and MySQL based real estate sales website script by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Responsive Realestate Script version 3.2. A remote attacker can exploit this vulnerability by sending the...

PHP Scripts Mall Secure E-commerce Script SQL Injection Vulnerability

PHP Scripts Mall Secure E-commerce Script is a set of PHP based e-commerce website scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Secure E-commerce Script version 2.0.1. A remote attacker can inject SQL into the category.php file by sending the...

PHP Scripts Mall Multivendor Penny Auction Clone Script SQL Injection Vulnerability

PHP Scripts Mall Multivendor Penny Auction Clone Script is a PHP based online auction website script from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Multivendor Penny Auction Clone Script version 1.0. A remote attacker can exploit this vulnerability to inject...

PHP Scripts Mall Kickstarter Clone Script SQL Injection Vulnerability

PHP Scripts Mall Kickstarter Clone Script is a set of PHP based scripts for crowdfunding websites by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Kickstarter Clone Script version 2.0. A remote attacker can exploit the vulnerability by sending the 'projid'...

PHP Scripts Mall Facebook Clone Script SQL Injection Vulnerability

PHP Scripts Mall Facebook Clone Script is a set of PHP based social networking site scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Facebook Clone Script version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sendi...

PHP Scripts Mall Food Order Script SQL Injection Vulnerability

PHP Scripts Mall Food Order Script is a set of PHP based online review and feedback scripts for hotels, restaurants by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Food Order Script version 1.0. A remote attacker can exploit this vulnerability by sending the...

PHP Scripts Mall Chartered Accountant Booking Script SQL Injection Vulnerability

PHP Scripts Mall Chartered Accountant Booking Script is a PHP and MySQL based online search and booking script for accountants by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Chartered Accountant Booking Script version 1.0. A remote attacker can exploit the...