CVE-2017-17620
Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.
9.8CVSS
9.9AI Score
0.002EPSS
CVE-2018-6861
Cross Site Scripting (XSS) exists in PHP Scripts Mall Lawyer Search Script 1.0.2 via a profile update parameter.
5.4CVSS
5.3AI Score
0.0005EPSS