Security Vulnerabilities - CVEs Published In December 2017
Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Laundry Booking Script 1.0 has SQL Injection via the /list city parameter.
CVSS Score
9.8
EPSS Score
0.042
Published
2017-12-13
Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail URI.
CVSS Score
9.8
EPSS Score
0.042
Published
2017-12-13
Online Exam Test Application Script 1.6 has SQL Injection via the exams.php sort parameter.
CVSS Score
9.8
EPSS Score
0.042
Published
2017-12-13
Opensource Classified Ads Script 3.2 has SQL Injection via the advance_result.php keyword parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Professional Service Script 1.0 has SQL Injection via the service-list city parameter.
CVSS Score
9.8
EPSS Score
0.024
Published
2017-12-13
Readymade PHP Classified Script 3.3 has SQL Injection via the /categories subctid or mctid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Readymade Video Sharing Script 3.2 has SQL Injection via the single-video-detail.php report_videos array parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13