PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote attackers to cause a denial of service (outage of profile editing) via crafted JavaScript code in the KeySkills field. Date published : 2019-03-20 https://gkaim.com/cve-2018-20642-vikas-chaudhary/
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature. Date published : 2019-03-20 https://gkaim.com/cve-2018-20641-vikas-chaudhary/
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting (XSS) via the Full Name field. Date published : 2019-03-20 https://gkaim.com/cve-2018-20640-vikas-chaudhary/
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar. Date published : 2019-03-20 https://gkaim.com/cve-2018-20639-vikas-chaudhary/
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. Date published : 2019-03-20 https://gkaim.com/cve-2018-20638-vikas-chaudhary/
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 allows remote attackers to cause a denial of service (unrecoverable blank profile) via crafted JavaScript code in the First Name and Last Name field. Date...
PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field. Date published : 2019-03-20 https://gkaim.com/cve-2018-20636-vikas-chaudhary/
PHP Scripts Mall Advance B2B Script 2.1.4 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory. Date published : 2019-03-20 https://gkaim.com/cve-2018-20635-vikas-chaudhary/
PHP Scripts Mall Advance B2B Script 2.1.4 allows remote attackers to cause a denial of service (changed Page structure) via JavaScript code in the First Name field. Date published : 2019-03-20 https://gkaim.com/cve-2018-20634-vikas-chaudhary/
PHP Scripts Mall Advance B2B Script 2.1.4 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature. Date published : 2019-03-20 https://gkaim.com/cve-2018-20633-vikas-chaudhary/
PHP Scripts Mall Advance B2B Script 2.1.4 has stored Cross-Site Scripting (XSS) via the FIRST NAME or LAST NAME field. Date published : 2019-03-20 https://gkaim.com/cve-2018-20632-vikas-chaudhary/
PHP Scripts Mall Website Seller Script 2.0.5 allows full Path Disclosure via a request for an arbitrary image URL such as a .png file. Date published : 2019-03-20 https://gkaim.com/cve-2018-20631-vikas-chaudhary/
PHP Scripts Mall Advance Crowdfunding Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory. Date published : 2019-03-20 https://gkaim.com/cve-2018-20630-vikas-chaudhary/
PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory. Date published : 2019-03-20 https://gkaim.com/cve-2018-20629-vikas-chaudhary/