582 matches found
CVE-2017-17940
PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php...
Sql injection
PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter...
CVE-2017-17938
PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter...
Design/Logic Flaw
PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter...
CVE-2017-17939
PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php...
CVE-2017-17941
PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter...
CVE-2017-17939
The CVE-2017-17939 entry relates to PHP Scripts Mall Single Theater Booking and describes a Cross-Site Request Forgery (CSRF) vulnerability in the admin/sitesettings.php page. The affected software/component is PHP Scripts Mall Single Theater Booking; the underlying issue is CSRF that allows an a...
CVE-2017-17938
PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter...
CVE-2017-17940
PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php...
PHP Scripts Mall Professional Service Script Information Disclosure Vulnerability
Professional Service Script is a script from PHP Scripts Mall with search, task creation and task management features. An information disclosure vulnerability exists in PHP Scripts Mall Professional Service Script. A remote attacker can exploit the vulnerability by sending PATHINFO via a speciall...
PHP Scripts Mall Professional Service Script Predictable Registration URL Vulnerability
Professional Service Script is a script from PHP Scripts Mall with search, task creation and task management features. A predictable registration URL vulnerability exists in PHP Scripts Mall Professional Service Script. A remote attacker could exploit this vulnerability to register with an invali...
PHP Scripts Mall Single Theater Booking Cross-Site Scripting Vulnerability
PHP Scripts Mall Single Theater Booking is an open source theater script. A cross-site scripting vulnerability exists in PHP Scripts Mall Single Theater Booking. A remote attacker can inject arbitrary web script or HTML by sending the 'theaterid' parameter to the admin/viewtheatre.php file...
PHP Scripts Mall Single Theater Booking Cross-Site Scripting Vulnerability (CNVD-2018-00498)
PHP Scripts Mall Single Theater Booking is an open source theater script. A cross-site scripting vulnerability exists in PHP Scripts Mall Single Theater Booking. A remote attacker can inject arbitrary web script or HTML by sending the 'title' parameter to the admin/sitesettings.php file...
PHP Scripts Mall Professional Service Script Cross-Site Scripting Vulnerability (CNVD-2018-00494)
Professional Service Script is a script from PHP Scripts Mall with search, task creation and task management features. A cross-site scripting vulnerability exists in PHP Scripts Mall Professional Service Script. A remote attacker can exploit this vulnerability via the admin/generalsettingupd.php...
CVE-2017-17924
PHP Scripts Mall Professional Service Script allows remote attackers to obtain sensitive full-path information via the id parameter to admin/reviewuserwise.php...
CVE-2017-17925
PHP Scripts Mall Professional Service Script has XSS via the admin/generalsettingupd.php websitetitle parameter...
CVE-2017-17926
PHP Scripts Mall Professional Service Script has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address...
CVE-2017-17905
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php...
CVE-2017-17931
PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter...
CVE-2017-17905
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php...