CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2019/03/21 4:1 p.m.•8 views

Design/Logic Flaw

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected HTML injection via the Search Form...

5CVSS5.6AI score0.00238EPSS

Prion•added 2019/03/21 4:1 p.m.•10 views

Directory traversal

PHP Scripts Mall Property Rental Software 2.1.4 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2016/08 directory...

4CVSS6.6AI score0.0039EPSS

Prion•added 2019/03/21 4:1 p.m.•9 views

Cross site request forgery (csrf)

PHP Scripts Mall Rental Bike Script 2.0.3 has Cross-Site Request Forgery CSRF via the Edit Profile feature...

6.8CVSS8.9AI score0.00145EPSS

Prion•added 2019/03/21 4:1 p.m.•6 views

Directory traversal

PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory...

4CVSS6.6AI score0.0039EPSS

OSV•added 2019/03/21 4:0 p.m.•2 views

CVE-2018-20648

PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery CSRF via accountedit.php...

8.8CVSS5.8AI score0.00145EPSS

NVD•added 2019/03/21 4:0 p.m.•10 views

CVE-2018-20648

PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery CSRF via accountedit.php...

8.8CVSS9AI score0.00145EPSS

NVD•added 2019/03/21 4:0 p.m.•9 views

CVE-2018-20646

PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory...

6.5CVSS6.6AI score0.00485EPSS

NVD•added 2019/03/21 4:0 p.m.•15 views

CVE-2018-20641

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery CSRF via the Edit Profile feature...

8.8CVSS9AI score0.00145EPSS

NVD•added 2019/03/21 4:0 p.m.•6 views

CVE-2018-20645

PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field...

NVD•added 2019/03/21 4:0 p.m.•21 views

CVE-2018-20639

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar...

6.1CVSS6.5AI score0.0024EPSS

CVE-2018-20636

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field...

OSV•added 2019/03/21 4:0 p.m.•1 views

CVE-2018-20640

PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting XSS via the Full Name field...

NVD•added 2019/03/21 4:0 p.m.•9 views

CVE-2018-20631

PHP Scripts Mall Website Seller Script 2.0.5 allows full Path Disclosure via a request for an arbitrary image URL such as a .png file...

5.3CVSS5.4AI score0.00366EPSS

OSV•added 2019/03/21 4:0 p.m.•0 views

CVE-2018-20636

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field...

7.5CVSS7.6AI score0.00561EPSS

CVE-2018-20628

PHP Scripts Mall Charity Foundation Script 1 through 3 allows directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

NVD•added 2019/03/21 4:0 p.m.•8 views

CVE-2018-20635

PHP Scripts Mall Advance B2B Script 2.1.4 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory...

4.3CVSS4.8AI score0.00164EPSS

5.3CVSS5.4AI score0.0031EPSS

CVE-2018-20630

PHP Scripts Mall Advance Crowdfunding Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

5.3CVSS5.4AI score0.00191EPSS

CVE-2018-20629

PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

NVD•added 2019/03/21 4:0 p.m.•6 views

CVE-2018-20627

PHP Scripts Mall Consumer Reviews Script 4.0.3 has HTML injection via the search box...