Home > vikash
cve-2019-7437-vikas-chaudhary

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected Cross-Site Scripting-CVE-2019-7437

******************************************************************************************* # Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected Cross-Site Scripting (XSS) via the Search field # Date: 30.12.2018 # Site Title : Opensource Classified Ads Script # Vendor Homepage: https://www.phpscriptsmall.com/ #Vendor Software: https://www.phpscriptsmall.com/product/professional-classified-ads-script/ # Software Link: http://198.38.86.159/~classic/ # Category: Web Application # Version: 3.2.2 # Exploit Author: Vikas Chaudhary # Contact: https://www.facebook.com/profile.php?id=100011287630308 # Web: https://gkaim.com/ # Tested on: Windows 10 -Firefox , # CVE-2019-7437 ***************************************************************************************** ## VENDOR SUMMARY :- PHP Scripts Mall Pvt. Ltd. is a professional software

Read More
cve-2019-7436-vikas-chaudhary

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal-CVE-2019-7436

******************************************************************************************* # Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads directory # Date: 30.12.2018 # Site Title : Opensource Classified Ads Script # Vendor Homepage: https://www.phpscriptsmall.com/ #Vendor Software: https://www.phpscriptsmall.com/product/professional-classified-ads-script/ # Software Link: 198.38.86.159/~classic/ # Category: Web Application # Version: 3.2.2 # Exploit Author: Vikas Chaudhary # Contact: https://www.facebook.com/profile.php?id=100011287630308 # Web: https://gkaim.com/ # Tested on: Windows 10 -Firefox # CVE-2019-7436 ***************************************************************************************** Vulnerability Description => A path traversal attack (also known as

Read More
cve-2019-7435-vikas-chaudhary

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected HTML injection-CVE-2019-7435

******************************************************************************************* # Exploit Title: PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected HTML injection via the Search Form # Site Title : Opensource Classified Ads Script # Vendor Homepage: https://www.phpscriptsmall.com/ # Software Link: http://198.38.86.159/~classic/ # Category: Web Application # Version: 3.2.2 # Exploit Author: Vikas Chaudhary # Contact: https://www.facebook.com/profile.php?id=100011287630308 # Web: https://gkaim.com/ # Tested on: Windows 10 -Firefox , # CVE-2019-7435 ***************************************************************************************** ## VENDOR SUMMARY :- PHP Scripts Mall Pvt. Ltd. is a professional software selling portal offering wide range

Read More
cve-2019-7434-vikas-chaudhary

PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal-CVE-2019-7434

******************************************************************************************* # Exploit Title:PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory. # Date: 30.12.2018 # Site Title : Image Sharing Script # Vendor Homepage: https://www.phpscriptsmall.com/ # Software Link: http://under24usd.com/demo/rental-bike # Category: Web Application # Version: 2.0.3 # Exploit Author: Vikas Chaudhary # Contact: https://www.facebook.com/profile.php?id=100011287630308 # Web: https://gkaim.com/ # Tested on: Windows 10 -Firefox # CVE-2019-7434 ***************************************************************************************** Vulnerability Description => A path traversal attack (also known as directory traversal) aims to access

Read More