EUVD-2019-20018

Matrimony Website Script M-Plus contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through various POST parameters. Attackers can inject malicious SQL payloads into parameters like txtGender, religion, Fage, an...

EUVD-2019-20010

Zeeways Matrimony CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through the profilelist endpoint. Attackers can inject SQL code via the upcast, smother, and sreligion parameters to extract sensitive database information usi...

CVE-2019-25639 Matrimony Website Script M-Plus Multiple SQL Injection

Matrimony Website Script M-Plus contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through various POST parameters. Attackers can inject malicious SQL payloads into parameters like txtGender, religion, Fage, an...

CVE-2019-25635 Zeeways Matrimony CMS Lastest SQL Injection via profile_list

Zeeways Matrimony CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through the profilelist endpoint. Attackers can inject SQL code via the upcast, smother, and sreligion parameters to extract sensitive database information usi...

CVE-2019-25635

Zeeways Matrimony CMS is affected by SQL injection vulnerabilities in the profile_list endpoint, exploitable by unauthenticated attackers via the up_cast, s_mother, and s_religion parameters to manipulate database queries and exfiltrate data using time-based or error-based techniques. The CVE-201...

Zeeways Matrimony CMS SQL注入漏洞

Zeeways Matrimony CMS is a wedding and dating website building system developed by Zeeways Corporation. Zeeways Matrimony CMS has a SQL injection vulnerability. This vulnerability stems from multiple SQL injections at the profilelist endpoint, which may allow unauthenticated attackers to manipula...

researchonreligion.org Cross Site Scripting vulnerability OBB-3902383

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

instituteofreligion.org Cross Site Scripting vulnerability OBB-3855100

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Experts Warn of SandStrike Android Spyware Infecting Devices via Malicious VPN App

A previously undocumented Android spyware campaign has been found striking Persian-speaking individuals by masquerading as a seemingly harmless VPN application. Russian cybersecurity firm Kaspersky is tracking the campaign under the moniker SandStrike. It has not been attributed to any particular...

[SECURITY] Fedora 31 Update: crawl-0.24.1-2.fc31

This is the Console ncurses version of crawl. Dungeon Crawl Stone Soup is a free roguelike game of exploration and treasure-hunting in dungeons filled with dangerous and unfriendly monsters in a quest for the mystifyingly fabulous Orb of Zot. Dungeon Crawl Stone Soup has diverse species and many...

[SECURITY] Fedora 32 Update: crawl-0.24.1-2.fc32

This is the Console ncurses version of crawl. Dungeon Crawl Stone Soup is a free roguelike game of exploration and treasure-hunting in dungeons filled with dangerous and unfriendly monsters in a quest for the mystifyingly fabulous Orb of Zot. Dungeon Crawl Stone Soup has diverse species and many...

PHP Scripts Mall Multi religion Responsive Matrimonial Cross Site Scripting Vulnerability

PHP Scripts Mall Multi religion Responsive Matrimonial is a set of PHP based matrimonial dating website scripts by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall Multi religion Responsive Matrimonial version 4.7.2. A remote attacker can exploit this...

CVE-2018-7315

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

CVE-2018-7315

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

CVE-2018-7315

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter...

CVE-2018-6864

Cross Site Scripting XSS exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter...

Cross site scripting

Cross Site Scripting XSS exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter...

CVE-2018-6864

CVE-2018-6864 concerns a stored Cross-Site Scripting (XSS) vulnerability in the PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2. The issue is triggered via a user profile update parameter, where input is insufficiently sanitized, allowing arbitrary web-script/HTML execution in a vict...

CVE-2018-6864

Cross Site Scripting XSS exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter...

PHP Matrimonial Script 3.0 - SQL Injection

Exploit Title: Matrimonial Script v3.0 - SQL Injection Google Dork: N/A Date: 06.03.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software : http://www.phpscriptsmall.com/product/matrimonial-script/ Demo: http://74.124.215.220/matriialscrip/ Version: 3.0 Tested on: Win7 x64, Kali Linux x64...