CVE-2018-6795

CVE-2018-6795 affects PHP Scripts Mall Naukri Clone Script 3.0.3. The connected documents describe a Stored XSS vulnerability reachable via every profile input field, indicating user-supplied data entering profile fields can be echoed without proper sanitization. This is evidenced by multiple cro...

CVE-2018-6655

PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field...

PHP Scripts Mall Doctor Search Script 1.0.2 Cross Site Scripting

Exploit Title: PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS. Date: 06.02.2018 Exploit Author: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/doctor-search-script/...

Doctor Search Script 1.0.2 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS. Exploit Author: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Vendor Homepage: https://www.phpscriptsmall.com/ Software Link:...

Muslim Matrimonial Script Cross-Site Scripting Vulnerability (CNVD-2018-01239)

Muslim Matrimonial Script is a community matrimonial script for matrimonial websites by PHP Scripts Mall. A cross-site scripting vulnerability exists in PHP Scripts Mall Muslim Matrimonial Script. The vulnerability can be exploited to conduct cross-site scripting attacks via the admin/eventadd.ph...

Muslim Matrimonial Script Cross-Site Scripting Vulnerability

Muslim Matrimonial Script is a community matrimonial script for matrimonial websites by PHP Scripts Mall. A cross-site scripting vulnerability exists in PHP Scripts Mall Muslim Matrimonial Script. The vulnerability can be exploited to conduct cross-site scripting attacks via the...

Design/Logic Flaw

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/eventadd.php eventtitle parameter...

CVE-2017-17981

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/slideredit.php editid parameter...

CVE-2017-17982

PHP Scripts Mall Muslim Matrimonial Script has CSRF via admin/subadminedit.php...

CVE-2017-17987

PHP Scripts Mall Muslim Matrimonial Script allows arbitrary file upload via admin/mydetailsedit.php...

Design/Logic Flaw

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/eventedit.php editid parameter...

Design/Logic Flaw

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/slideredit.php editid parameter...

CVE-2017-17985

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/stateview.php couid parameter...

Design/Logic Flaw

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/casteview.php commid parameter...

Cross site request forgery (csrf)

PHP Scripts Mall Muslim Matrimonial Script has CSRF via admin/subadminedit.php...

CVE-2017-17984

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/eventedit.php editid parameter...

CVE-2017-17985

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/stateview.php couid parameter...

CVE-2017-17986

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/casteview.php commid parameter...

Design/Logic Flaw

PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/stateview.php couid parameter...

Sql injection

PHP Scripts Mall Muslim Matrimonial Script has SQL injection via the view-profile.php memid parameter...