CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

582 matches found

RedhatCVE•added 2025/05/22 5:25 a.m.•6 views

CVE-2019-7552

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

5.4CVSS5.9AI score0.00206EPSS

Exploits1References1

CNVD•added 2020/01/07 12:0 a.m.•2 views

PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability

PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the 'searchtext' parameter of the search-results.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability...

6.1CVSS6.5AI score0.00328EPSS

Exploits1References1

CNVD•added 2019/07/16 12:0 a.m.•1 views

PHP Scripts Mall School College Portal with ERP Script Cross-Site Scripting Vulnerability

PHP Scripts Mall School College Portal with ERP Script is a school management system from PHP Scripts Mall India. A cross-site scripting vulnerability exists in /pro-school/index.php?student/message/sendreply/ in PHP Scripts Mall School College Portal with ERP Script 2.6.1 and earlier versions. T...

6.1CVSS6.5AI score0.00328EPSS

Exploits1References1

CNVD•added 2019/06/10 12:0 a.m.•2 views

PHP Scripts Mall Chartered Accountant:Auditor Website Cross-Site Scripting Vulnerability

PHP Scripts Mall Chartered Accountant:Auditor Website is an accounting auditor website system script from PHP Scripts Mall, India. A cross-site scripting vulnerability exists in the Profile Update page in PHP Scripts Mall Chartered Accountant : Auditor Website version 2.0.1, which can be exploite...

5.4CVSS6.5AI score0.00206EPSS

Exploits1References1

CNVD•added 2019/06/10 12:0 a.m.•1 views

PHP Scripts Mall API Based Travel Booking Cross Site Scripting Vulnerability

PHP Scripts Mall API Based Travel Booking is an online travel booking system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall API Based Travel Booking version 3.4.7, which can be exploited by an attacker to execute client-side code...

6.1CVSS6.5AI score0.00266EPSS

Exploits1References1

NVD•added 2019/06/06 4:29 p.m.•8 views

CVE-2019-7554

An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...

6.1CVSS6.1AI score0.00266EPSS

Exploits1References2

NVD•added 2019/06/06 4:29 p.m.•11 views

CVE-2019-7552

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

5.4CVSS5.3AI score0.00206EPSS

Exploits1References2

NVD•added 2019/06/06 4:29 p.m.•11 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.4CVSS5.3AI score0.00206EPSS

Exploits1References1

Prion•added 2019/06/06 4:29 p.m.•19 views

Design/Logic Flaw

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

3.5CVSS5.2AI score0.00206EPSS

Exploits1References2Affected Software1

Prion•added 2019/06/06 4:29 p.m.•12 views

Cross site scripting

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

3.5CVSS5.3AI score0.00206EPSS

Exploits1References1

Cvelist•added 2019/06/06 3:36 p.m.•12 views

CVE-2019-7552

An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section...

5.3AI score0.00206EPSS

Exploits1References2

CVE•added 2019/06/06 3:27 p.m.•93 views

CVE-2019-7554

The vulnerability CVE-2019-7554 affects PHP Scripts Mall API Based Travel Booking 3.4.7. It is a reflected cross-site scripting (XSS) flaw exploitable via the flight-results.php d2 parameter, which can cause client-side script execution. The issue stems from input reflected back to the user; expl...

6.1CVSS6AI score0.00266EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/06/06 12:0 a.m.•15 views

CVE-2019-7553

PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field...

5.3AI score0.00206EPSS

Exploits1References1

CVE•added 2019/06/06 12:0 a.m.•112 views

CVE-2019-7553

CVE-2019-7553 affects PHP Scripts Mall Chartered Accountant: Auditor Website version 2.0.1, with a Stored XSS in the Profile Update page via the My Name field. Several sources (Red Hat advisory, CNVD, CVE listings, and PT-2019-18644) confirm the vulnerability type as stored XSS and point to the s...

5.4CVSS5.2AI score0.00206EPSS

Exploits1References1Affected Software1

CNVD•added 2019/04/01 12:0 a.m.•3 views

PHP Scripts Mall Amazon Affiliate Store Input Validation Error Vulnerability

PHP Scripts Mall Amazon Affiliate Store is an online e-store system by PHP Scripts Mall India. An input validation error vulnerability exists in PHP Scripts Mall Amazon Affiliate Store version 2.1.6, which can be exploited by attackers to tamper with payment amounts...

6.5CVSS7AI score0.00193EPSS

Exploits1References1