CVE-2018-7650

Summary: CVE-2018-7650 corresponds to a stored XSS in PHP Scripts Mall Hot Scripts Clone:Script Classified Version 3.1, specifically in the Add New section for a Management User. The issue arises because the input in the name parameter is not sanitized, allowing injected JavaScript to be rendered...

CVE-2018-7469

PHP Scripts Mall Entrepreneur Job Portal Script 2.0.9 has XSS via the pname aka Edit Category Name field to admin/categoriesindustry.php aka Categories - Industry Type...

CVE-2018-7477

SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parentmodule/parentlogin.php...

CVE-2018-7477

SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parentmodule/parentlogin.php...

CVE-2018-7477

The CVE-2018-7477 entry describes a SQL injection in PHP Scripts Mall School Management Script 3.0.4 that allows authentication bypass via the login page at parents/Parent_module/parent_login.php. Multiple connected sources corroborate a vulnerability in the Username/Password fields enabling admi...

School Management Script 3.0.4 - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4. Exploit Author: Samiran Santra Vendor Homepage: https://www.phpscriptsmall.com Software Link: https://www.phpscriptsmall.com/product/school-management-syst...

School Management Script 3.0.4 SQL Injection

Exploit Title: SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4. Date: 26/02/2018 Exploit Author: Samiran Santra Vendor Homepage: https://www.phpscriptsmall.com Software Link: https://www.phpscriptsmall.com/product/school-management-system Version: v3.0.4 Tested on: Windows...

School Management Script 3.0.4 - Authentication Bypass

Exploit Title: SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4. Date: 26/02/2018 Exploit Author: Samiran Santra Vendor Homepage: https://www.phpscriptsmall.com Software Link: https://www.phpscriptsmall.com/product/school-management-system Version: v3.0.4 Tested on: Windows...

School Management Script 3.0.4 - Authentication Bypass

School Management Script 3.0.4 - Authentication Bypass Exploit Title: SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4. Date: 26/02/2018 Exploit Author: Samiran Santra Vendor Homepage: https://www.phpscriptsmall.com Software Link:...

PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script is a set of online group buying deal scripts from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script version 3.0.2. A remote attacker can exploit this...

PHP Scripts Mall Multi Language Olx Clone Script Cross Site Scripting Vulnerability

PHP Scripts Mall Multi Language Olx Clone Script is a set of PHP based scripts for multilingual information publishing websites from PHP Scripts Mall, India. A cross-site scripting vulnerability exists in PHP Scripts Mall Multi Language Olx Clone Script version 2.0.6. A remote attacker can exploi...

PHP Scripts Mall Facebook Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Facebook Clone Script is a set of PHP based social networking site scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Facebook Clone Script. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

PHP Scripts Mall Bitcoin MLM Software Cross-Site Scripting Vulnerability

PHP Scripts Mall Bitcoin MLM Software is a PHP-based bitcoin management software from PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Bitcoin MLM Software version 1.0.2. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

PHP Scripts Mall Hot Scripts Clone Script Classified Cross-Site Scripting Vulnerability

PHP Scripts Mall Hot Scripts Clone Script Classified is a set of PHP based information publishing website scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the review section of PHP Scripts Mall Hot Scripts Clone Script Classified version 3.1. A remote attacker can...

CVE-2018-6859

SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter...

CVE-2018-6859

CVE-2018-6859 affects the PHP Scripts Mall Schools Alert Management Script (version 2.0.2). A SQL Injection in the Login parameter enables a remote attacker to bypass authentication, effectively gaining access without valid credentials. Several connected sources corroborate an authentication bypa...

CVE-2018-6859

SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter...

Cross site scripting

Cross Site Scripting XSS exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter...

CVE-2018-6866

Cross Site Scripting XSS exists in PHP Scripts Mall Learning and Examination Management System Script 2.3.1 via a crafted message...

CVE-2018-6868

Cross Site Scripting XSS exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter...