Security Vulnerabilities - CVEs Published In December 2017
Responsive Realestate Script 3.2 has SQL Injection via the property-list tbud parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Secure E-commerce Script 2.0.1 has SQL Injection via the category.php searchmain or searchcat parameter, or the single_detail.php sid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Yoga Class Script 1.0 has SQL Injection via the /list city parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Multireligion Responsive Matrimonial 4.7.2 has SQL Injection via the success-story.php succid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Responsive Events And Movie Ticket Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Multiplex Movie Theater Booking Script 3.1.5 has SQL Injection via the trailer-detail.php moid parameter, show-time.php moid parameter, or event-detail.php eid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Single Theater Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
MLM Forex Market Plan Script 2.0.4 has SQL Injection via the news_detail.php newid parameter or the event_detail.php eventid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13
Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val parameter.
CVSS Score
9.8
EPSS Score
0.025
Published
2017-12-13