CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

582 matches found

Cvelist•added 2019/03/20 4:35 p.m.•12 views

CVE-2018-20629

PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

5.4AI score0.00191EPSS

Exploits1References1

CVE•added 2019/03/20 4:35 p.m.•34 views

CVE-2018-20629

CVE-2018-20629 affects PHP Scripts Mall Charity Donation Script (readymadeb2bscript). The issue is a directory traversal vulnerability exposed by direct requests listing an uploads directory (e.g., wp-content/uploads/2018/12). Impact is partial confidentiality exposure; no exploitation or patch d...

5.3CVSS5.4AI score0.00191EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/03/20 4:31 p.m.•9 views

CVE-2018-20628

PHP Scripts Mall Charity Foundation Script 1 through 3 allows directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

7.6AI score0.00561EPSS

Exploits1References1

Cvelist•added 2019/03/20 4:25 p.m.•13 views

CVE-2018-20627

PHP Scripts Mall Consumer Reviews Script 4.0.3 has HTML injection via the search box...

5.8AI score0.00206EPSS

Exploits1References1

CVE•added 2019/03/20 3:55 p.m.•30 views

CVE-2018-20626

CVE-2018-20626 involves the PHP Scripts Mall Consumer Reviews Script 4.0.3. The connected records confirm a directory traversal vulnerability triggered by a direct request to an uploads directory (for example, wp-content/uploads/2018/12). The root cause is a traversal flaw that permits listing/po...

6.5CVSS6.5AI score0.00485EPSS

Exploits1References1Affected Software1

Prion•added 2019/03/06 10:29 p.m.•15 views

Design/Logic Flaw

PHP Scripts Mall Personal Video Collection Script 4.0.4 has Stored XSS via the "Update profile" feature...

3.5CVSS5.3AI score0.00206EPSS

Exploits1References1Affected Software1

NVD•added 2019/03/06 10:29 p.m.•16 views

CVE-2019-9607

PHP Scripts Mall Medical Store Script 3.0.3 allows Path Traversal by navigating to the parent directory of a jpg or png file...

5.3CVSS5.3AI score0.00264EPSS

Exploits1References1

OSV•added 2019/03/06 10:29 p.m.•3 views

CVE-2019-9607

PHP Scripts Mall Medical Store Script 3.0.3 allows Path Traversal by navigating to the parent directory of a jpg or png file...

5.3CVSS6.1AI score

Exploits0References1

Prion•added 2019/03/06 10:29 p.m.•9 views

Path traversal

PHP Scripts Mall Medical Store Script 3.0.3 allows Path Traversal by navigating to the parent directory of a jpg or png file...

5CVSS5.3AI score0.00264EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/03/06 10:0 p.m.•13 views

CVE-2019-9607

PHP Scripts Mall Medical Store Script 3.0.3 allows Path Traversal by navigating to the parent directory of a jpg or png file...

5.3AI score0.00264EPSS

Exploits1References1

CVE•added 2019/03/06 10:0 p.m.•37 views

CVE-2019-9606

CVE-2019-9606 affects PHP Scripts Mall Personal Video Collection Script 4.0.4. The vulnerability is a Stored XSS in the Update profile feature. The available sources describe the affected product and the type of issue but do not provide detailed root cause analysis, exploit patterns, affected ver...

5.4CVSS5.2AI score0.00206EPSS

Exploits1References1Affected Software1

CNVD•added 2019/02/26 12:0 a.m.•2 views

PHP Scripts Mall Custom T-Shirt Ecommerce Script Input Validation Vulnerability

PHP Scripts Mall Custom T-Shirt Ecommerce Script is a website system for customizing t-shirts online by PHP Scripts Mall India. An input validation vulnerability exists in PHP Scripts Mall Custom T-Shirt Ecommerce Script version 3.1.1, which can be exploited by an attacker to change the amount of...

6.5CVSS7.1AI score0.00193EPSS

Exploits1References1

NVD•added 2019/02/23 9:29 p.m.•8 views

CVE-2019-9064

PHP Scripts Mall Cab Booking Script 1.0.3 allows Directory Traversal into the parent directory of a jpg or png file...

5.3CVSS5.4AI score0.00353EPSS

Exploits1References1

NVD•added 2019/02/23 9:29 p.m.•6 views

CVE-2019-9065

PHP Scripts Mall Custom T-Shirt Ecommerce Script 3.1.1 allows parameter tampering of the payment amount...

6.5CVSS6.6AI score0.00193EPSS

Exploits1References1

OSV•added 2019/02/23 9:29 p.m.•3 views

CVE-2019-9065

PHP Scripts Mall Custom T-Shirt Ecommerce Script 3.1.1 allows parameter tampering of the payment amount...

6.5CVSS6.6AI score

Exploits0References1

NVD•added 2019/02/23 9:29 p.m.•7 views

CVE-2019-9063

PHP Scripts Mall Auction website script 2.0.4 allows parameter tampering of the payment amount...

6.5CVSS6.6AI score0.00193EPSS

Exploits1References1

Prion•added 2019/02/23 9:29 p.m.•9 views

Directory traversal

PHP Scripts Mall Cab Booking Script 1.0.3 allows Directory Traversal into the parent directory of a jpg or png file...

5CVSS5.4AI score0.00353EPSS

Exploits1References1Affected Software1

Prion•added 2019/02/23 9:29 p.m.•12 views

Cross site request forgery (csrf)

PHP Scripts Mall Online Food Ordering Script 1.0 has Cross-Site Request Forgery CSRF in my-account.php...

6CVSS8AI score0.00135EPSS

Exploits1References1Affected Software1

CVE•added 2019/02/23 9:0 p.m.•37 views

CVE-2019-9063

The CVE-2019-9063 entry concerns PHP Scripts Mall Auction website script version 2.0.4, where an input validation vulnerability allows parameter tampering of the payment amount. Connected CNVD/NVD records describe an input validation flaw enabling modification of the donation/paid amount; exploit...

6.5CVSS6.5AI score0.00193EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/02/23 9:0 p.m.•9 views

CVE-2019-9062

PHP Scripts Mall Online Food Ordering Script 1.0 has Cross-Site Request Forgery CSRF in my-account.php...

8.1AI score0.00135EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by