******************************************************************************************* # Exploit Title: PHP Scripts Mall Rental Bike Script 2.0.3 has HTML injection via the STREET field in the Profile Edit section # Site Title : Rental Bike Script….
******************************************************* # Exploit Title: PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php. # Date: 30.12.2018 # Site Title :Car Rental – Travel Booking Script….
******************************************************* # Exploit Title: PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory…..
************************************************ # Exploit Title: PHP Scripts Mall Basic B2B Script 2.0.9 has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory…..
************************************************** # Exploit Title: PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field. # Date: 30.12.2018 # Site Title : B2B….
*********************************************** # Exploit Title: PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature. # Date: 30.12.2018 # Site Title : B2B Script….
******************************************* # Exploit Title: PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/….
********************************************** # Exploit Title: PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote attackers to cause a denial of service (outage of profile editing) via crafted JavaScript code in….
************************************************ # Exploit Title: PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature. # Date: 30.12.2018 # Site Title : JOB….
********************************************** # Exploit Title: PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting (XSS) via the Full Name field. # Date: 30.12.2018 # Site Title : JOB….
*********************************************** # Exploit Title: PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar. # Site Title : JOB SITE (Job Portal) # Vendor Homepage:….
************************************************ # Exploit Title: PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1- has directory traversal via a direct request for a listing of an image directory such as an….
