2 matches found
CVE-2017-17615
CVE-2017-17615 affects Facebook Clone Script 1.0 (PHP Scripts Mall Facebook Clone Script). The vulnerability is an SQL injection in friend-profile.php via the id parameter, allowing remote command injection with the potential to access/modify data (as stated by CNVD/NVD); exploits exist (e.g., Ex...
CVE-2018-6858
CVE-2018-6858 affects the PHP Scripts Mall Facebook Clone Script (notably version 1.0.5). The connected sources describe a cross-site scripting (XSS) vulnerability in the Facebook Clone Script, enabling injection of arbitrary web script or HTML via user comments, i.e., a stored XSS scenario demon...