CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

582 matches found

NVD•added 2018/02/23 1:29 p.m.•12 views

CVE-2018-6867

Cross Site Scripting XSS exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter...

5.4CVSS5.3AI score0.00181EPSS

Exploits4References2

Prion•added 2018/02/23 1:29 p.m.•10 views

Cross site scripting

Cross Site Scripting XSS exists in PHP Scripts Mall Learning and Examination Management System Script 2.3.1 via a crafted message...

3.5CVSS5.2AI score0.00181EPSS

Exploits4References1Affected Software1

Cvelist•added 2018/02/23 1:0 p.m.•12 views

CVE-2018-6866

Cross Site Scripting XSS exists in PHP Scripts Mall Learning and Examination Management System Script 2.3.1 via a crafted message...

5.3AI score0.00181EPSS

Exploits4References1

CVE•added 2018/02/23 1:0 p.m.•38 views

CVE-2018-6866

CVE-2018-6866 affects PHP Scripts Mall Learning and Examination Management System Script 2.3.1. The connected documents describe a Cross Site Scripting (XSS) vulnerability in the system, exploitable through a crafted message in the messaging feature. PoCs and exploits (e.g., Exploit-DB and 0day l...

5.4CVSS5.2AI score0.00181EPSS

Exploits4References1Affected Software1

Cvelist•added 2018/02/23 1:0 p.m.•10 views

CVE-2018-6867

Cross Site Scripting XSS exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter...

5.3AI score0.00181EPSS

Exploits4References2

CVE•added 2018/02/23 1:0 p.m.•50 views

CVE-2018-6867

CVE-2018-6867 affects PHP Scripts Mall Alibaba Clone Script 1.0.2. The issue is a Cross-Site Scripting (XSS) vulnerability exploitable via the profile parameter, as described in multiple sources and evidenced by PoC/exploit references (e.g., exploit-db, 0day.today, Packet Storm). Public writeups ...

5.4CVSS5.2AI score0.00181EPSS

Exploits4References2Affected Software1

CVE•added 2018/02/23 1:0 p.m.•46 views

CVE-2018-6868

CVE-2018-6868 affects PHP Scripts Mall Slickdeals/DealNews/Groupon Clone Script 3.0.2. The issue is a Cross-Site Scripting vulnerability exposed via a User Profile Field parameter in the web app. PoC and multiple public exploits indicate a stored XSS vector, demonstrated in PoC examples (e.g., sc...

5.4CVSS5.2AI score0.00181EPSS

Exploits5References1Affected Software1

Cvelist•added 2018/02/23 1:0 p.m.•11 views

CVE-2018-6868

Cross Site Scripting XSS exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter...

5.3AI score0.00181EPSS

Exploits5References1

OSV•added 2018/02/13 5:29 p.m.•2 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

9.8CVSS5.8AI score

Exploits0References1

NVD•added 2018/02/13 5:29 p.m.•10 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

9.8CVSS9.9AI score0.00233EPSS

Exploits1References1

Cvelist•added 2018/02/13 5:0 p.m.•11 views

CVE-2018-6928

PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term...

10AI score0.00233EPSS

Exploits1References1

CVE•added 2018/02/13 5:0 p.m.•38 views

CVE-2018-6928

CVE-2018-6928 affects PHP Scripts Mall News Website Script 2.0.4, with a SQL Injection vulnerability in the search term parameter. Root cause is improper handling of user input allowing unauthorized SQL execution. Impact per sources is high: potential leakage of data, data alteration, and disrupt...

9.8CVSS9.8AI score0.00233EPSS

Exploits1References1Affected Software1

Prion•added 2018/02/12 3:29 a.m.•15 views

Remote code execution

Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture...

6.5CVSS8.9AI score0.0218EPSS

Exploits4References1Affected Software1

NVD•added 2018/02/12 3:29 a.m.•12 views

CVE-2018-6858

Cross Site Scripting XSS exists in PHP Scripts Mall Facebook Clone Script...

5.4CVSS5.4AI score0.00181EPSS

Exploits4References1