CVE-2017-17623

Opensource Classified Ads Script 3.2 is affected by a SQL Injection via the keyword parameter in advance_result.php. Multiple sources (NVD/CVE listings and CNVD/CVE records) confirm an injectable vulnerability in this version, with CVSS scores indicating HIGH/CRITICAL severity (NVD CVSS2: 7.5 HIG...

CVE-2019-7436

CVE-2019-7436 affects the PHP Scripts Mall Opensource Classified Ads Script version 3.2.2, with a vulnerability in the uploads directory handling that enables a directory traversal by directly requesting a listing of the uploads directory. The root cause is improper access control for the uploads...

CVE-2019-7437

CVE-2019-7437 affects PHP Scripts Mall Opensource Classified Ads Script 3.2.2 and is a reflected Cross-Site Scripting (XSS) vulnerability triggered via the Search field. The connected sources consistently describe the issue as a reflected XSS flaw in the search input, with no additional details o...

CVE-2019-7435

CVE-2019-7435 affects PHP Scripts Mall Opensource Classified Ads Script 3.2.2, which shows a reflected HTML injection vulnerability via the Search Form. The root cause is reflected HTML injection in the search functionality, enabling an attacker to manipulate HTML output. The CVSS details indicat...