CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1161 matches found

Cvelist•added 2019/02/16 10:0 p.m.•7 views

CVE-2019-8361

PHP Scripts Mall Responsive Video News Script has XSS via the Search Bar. This might, for example, be leveraged for HTML injection or URL redirection...

6.3AI score0.0024EPSS

Exploits1References2

Prion•added 2019/01/13 12:29 a.m.•8 views

Cross site scripting

PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script 2.0.1 has Reflected XSS via the srch parameter, as demonstrated by restaurants-details.php...

4.3CVSS6AI score0.0024EPSS

Exploits0References1Affected Software1

CVE•added 2019/01/13 12:0 a.m.•25 views

CVE-2019-6248

CVE-2019-6248 affects PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script 2.0.1. The connected sources consistently describe a Reflected XSS vulnerability triggered via the srch parameter, demonstrated by the restaurants-details.php endpoint. The vulnerability arises in user-supplied...

6.1CVSS6AI score0.0024EPSS

Exploits0References1Affected Software1

Prion•added 2019/01/11 5:29 a.m.•12 views

Design/Logic Flaw

The Admin Panel of PHP Scripts Mall Advance Peer to Peer MLM Script v1.7.0 allows remote attackers to bypass intended access restrictions by directly navigating to admin/dashboard.php or admin/user.php, as demonstrated by disclosure of information about users and staff...

5CVSS7.5AI score0.0025EPSS

Exploits0References1Affected Software1

CNVD•added 2019/01/02 12:0 a.m.•1 views

PHP Scripts Mall Website Seller Script Cross-Site Scripting Vulnerability (CNVD-2019-21121)

PHP Scripts Mall Website Seller Script is an e-commerce website system script from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Website Seller Script version 2.0.5, which can be exploited by remote attackers to inject arbitrary web script or HTML via the...

5.4CVSS5.4AI score0.00206EPSS

Exploits1References1

OSV•added 2018/12/28 4:29 p.m.•0 views

CVE-2018-20530

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

5.4CVSS5.8AI score

Exploits0References1

NVD•added 2018/12/28 4:29 p.m.•11 views

CVE-2018-20530

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

5.4CVSS5.3AI score0.00206EPSS

Exploits1References1

Prion•added 2018/12/28 4:29 p.m.•7 views

Design/Logic Flaw

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

3.5CVSS5.2AI score0.00206EPSS

Exploits2References1Affected Software1

Cvelist•added 2018/12/27 6:0 p.m.•12 views

CVE-2018-20530

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

5.3AI score0.00206EPSS

Exploits1References1

Prion•added 2018/12/13 6:29 p.m.•8 views

Cross site scripting

PHP Scripts Mall Entrepreneur B2B Script 3.0.6 allows Stored XSS via Account Settings fields such as FirstName and LastName, a similar issue to CVE-2018-14541...

3.5CVSS5.3AI score0.00206EPSS

Exploits5References1Affected Software1

Prion•added 2018/10/05 6:29 a.m.•7 views

Authentication flaw

Ice Cold Apps Servers Ultimate 6.0.212 does not require authentication for TELNET, SSH, or FTP, which allows remote attackers to execute arbitrary code by uploading PHP scripts...

7.5CVSS8.7AI score0.08819EPSS

Exploits1References2Affected Software1

NVD•added 2018/10/05 6:29 a.m.•8 views

CVE-2013-7465

Ice Cold Apps Servers Ultimate 6.0.212 does not require authentication for TELNET, SSH, or FTP, which allows remote attackers to execute arbitrary code by uploading PHP scripts...

9.8CVSS10AI score0.08819EPSS

Exploits1References2

NVD•added 2018/10/04 9:29 p.m.•6 views

CVE-2018-16457

PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/templatedpdec2015/img directory...

5.3CVSS5.5AI score0.00248EPSS

Exploits1References1

OSV•added 2018/10/04 9:29 p.m.•1 views

CVE-2018-16456

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a keyword. NOTE: This may overlap with CVE-2018-6870 which has XSS via the Listings Search feature...

6.1CVSS5.8AI score0.0024EPSS

Exploits1References1

NVD•added 2018/10/04 9:29 p.m.•9 views

CVE-2018-16455

PHP Scripts Mall Market Place Script 1.0.1 allows XSS via a keyword...

6.1CVSS6AI score0.0024EPSS

Exploits1References1

Prion•added 2018/10/04 9:29 p.m.•16 views

Cross site scripting

PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar...

4.3CVSS6AI score0.0024EPSS

Exploits1References1Affected Software1

NVD•added 2018/10/04 9:29 p.m.•7 views

CVE-2018-16326

PHP Scripts Mall Olx Clone 3.4.2 has XSS...

6.1CVSS6.4AI score0.0024EPSS

Exploits1References1

NVD•added 2018/10/04 9:29 p.m.•10 views

CVE-2018-16453

PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar...

6.1CVSS6.1AI score0.0024EPSS

Exploits1References1

Prion•added 2018/10/04 9:29 p.m.•11 views

Cross site scripting

PHP Scripts Mall Olx Clone 3.4.2 has XSS...

4.3CVSS6.4AI score0.0024EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/10/04 9:0 p.m.•11 views

CVE-2018-16456

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a keyword. NOTE: This may overlap with CVE-2018-6870 which has XSS via the Listings Search feature...

6AI score0.0024EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by