CVE-2018-6862

Cross Site Scripting XSS exists in PHP Scripts Mall Bitcoin MLM Software 1.0.2 via a profile field...

CVE-2018-6860

CVE-2018-6860 affects the PHP Scripts Mall Schools Alert Management Script 2.0.2. Public sources confirm an arbitrary file upload vulnerability in the profile picture upload flow that can lead to remote code execution. Exploitation samples exist (Exploit-DB PoC and multiple mirrors) showing how a...

CVE-2018-6864

Cross Site Scripting XSS exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter...

CVE-2018-6845

PHP Scripts Mall Multi Language Olx Clone Script 2.0.6 has XSS via the Leave Comment field...

CVE-2018-6858

CVE-2018-6858 affects the PHP Scripts Mall Facebook Clone Script (notably version 1.0.5). The connected sources describe a cross-site scripting (XSS) vulnerability in the Facebook Clone Script, enabling injection of arbitrary web script or HTML via user comments, i.e., a stored XSS scenario demon...

CVE-2018-6845

The CVE-2018-6845 entry concerns PHP Scripts Mall Multi Language Olx Clone Script 2.0.6 and a Cross-Site Scripting (XSS) vulnerability exposed via the Leave Comment field. The CNVD/NVD records confirm a stored/reflected XSS pathway where user-supplied input in comments can inject arbitrary script...

Cross site scripting

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

CVE-2018-6878

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

CVE-2018-6878

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

CVE-2018-6878

The connected sources confirm CVE-2018-6878 affects PHP Scripts Mall Hot Scripts Clone Script Classified 3.1, with a Cross Site Scripting (XSS) vulnerability in the review section exploitable via the title or description fields. The documents do not specify whether the issue is stored or reflecte...

CVE-2018-6878

Cross Site Scripting XSS exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field...

PHP Scripts Mall Naukri Clone Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Naukri Clone Script is an online recruitment system script based on PHP and MySQL platform by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Naukri Clone Script version 3.0.3. The vulnerability can be exploited by a remote attacker to inje...

PHP Scripts Mall Doctor Search Script Cross-Site Scripting Vulnerability

PHP Scripts Mall Doctor Search Script is a PHP based online doctor search website script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Doctor Search Script version 1.0.2. A remote attacker can exploit this vulnerability to inject arbitrary web script o...

CVE-2018-6796

PHP Scripts Mall Multilanguage Real Estate MLM Script 3.0 has Stored XSS via every profile input field...

CVE-2018-6795

PHP Scripts Mall Naukri Clone Script 3.0.3 has Stored XSS via every profile input field...

Cross site scripting

PHP Scripts Mall Naukri Clone Script 3.0.3 has Stored XSS via every profile input field...

CVE-2018-6795

PHP Scripts Mall Naukri Clone Script 3.0.3 has Stored XSS via every profile input field...

Cross site scripting

PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field...

CVE-2018-6795

PHP Scripts Mall Naukri Clone Script 3.0.3 has Stored XSS via every profile input field...

CVE-2018-6655

The CVE-2018-6655 entry affects PHP Scripts Mall Doctor Search Script 1.0.2, describing a Stored Cross-Site Scripting vulnerability via an arbitrary profile field. Public artifacts (exploit-db, 0day, CNVD/NVD mirrors) corroborate that an attacker could inject arbitrary script/HTML through profile...