The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.
ID | Description | Priority | Modified date |
---|---|---|---|
CVE-2017-17626 | Readymade PHP Classified Script 3.3 has SQL Injection via the /categories subctid or mctid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17625 | Professional Service Script 1.0 has SQL Injection via the service-list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17624 | PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17623 | Opensource Classified Ads Script 3.2 has SQL Injection via the advance_result.php keyword parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17622 | Online Exam Test Application Script 1.6 has SQL Injection via the exams.php sort parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17621 | Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail URI. | HIGH | Dec 13, 2017 |
CVE-2017-17620 | Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17619 | Laundry Booking Script 1.0 has SQL Injection via the /list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17618 | Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17617 | Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17616 | Event Search Script 1.0 has SQL Injection via the /event-list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17615 | Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php id parameter. | MEDIUM | Dec 13, 2017 |
CVE-2017-17614 | Food Order Script 1.0 has SQL Injection via the /list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17613 | Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17612 | Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17611 | Doctor Search Script 1.0 has SQL Injection via the /list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17610 | E-commerce MLM Software 1.0 has SQL Injection via the service_detail.php pid parameter, event_detail.php eventid parameter, or news_detail.php newid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17609 | Chartered Accountant Booking Script 1.0 has SQL Injection via the /service-list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17608 | Child Care Script 1.0 has SQL Injection via the /list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17607 | CMS Auditor Website 1.0 has SQL Injection via the PATH_INFO to /news-detail. | HIGH | Dec 13, 2017 |
CVE-2017-17606 | Co-work Space Search Script 1.0 has SQL Injection via the /list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17605 | Consumer Complaints Clone Script 1.0 has SQL Injection via the other-user-profile.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17604 | Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17603 | Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17602 | Advance B2B Script 2.1.3 has SQL Injection via the tradeshow-list-detail.php show_id or view-product.php pid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17601 | Cab Booking Script 1.0 has SQL Injection via the /service-list city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17600 | Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17599 | Advance Online Learning Management Script 3.1 has SQL Injection via the courselist.php subcatid or popcourseid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17598 | Affiliate MLM Script 1.0 has SQL Injection via the product-category.php key parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17597 | Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17596 | Entrepreneur Job Portal Script 2.0.6 has SQL Injection via the jobsearch_all.php rid1 parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17595 | Beauty Parlour Booking Script 1.0 has SQL Injection via the /list gender or city parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17594 | DomainSale PHP Script 1.0 has SQL Injection via the domain.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17593 | Simple Chatting System 1.0 allows Arbitrary File Upload via view/my_profile.php, which places files under uploads/. | MEDIUM | Dec 13, 2017 |
CVE-2017-17592 | Website Auction Marketplace 2.0.5 has SQL Injection via the search.php cat_id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17591 | Realestate Crowdfunding Script 2.7.2 has SQL Injection via the single-cause.php pid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17590 | FS Stackoverflow Clone 1.0 has SQL Injection via the /question keywords parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17589 | FS Thumbtack Clone 1.0 has SQL Injection via the browse-category.php cat parameter or the browse-scategory.php sc parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17588 | FS IMDB Clone 1.0 has SQL Injection via the movie.php f parameter, tvshow.php s parameter, or show_misc_video.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17587 | FS Indiamart Clone 1.0 has SQL Injection via the catcompany.php token parameter, buyleads-details.php id parameter, or company/index.php c parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17586 | FS Olx Clone 1.0 has SQL Injection via the subpage.php scat parameter or the message.php pid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17585 | FS Monster Clone 1.0 has SQL Injection via the Employer_Details.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17584 | FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php fl_orig or fl_dest parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17583 | FS Shutterstock Clone 1.0 has SQL Injection via the /Category keywords parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17582 | FS Grubhub Clone 1.0 has SQL Injection via the /food keywords parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17581 | FS Quibids Clone 1.0 has SQL Injection via the itechd.php productid parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17580 | FS Linkedin Clone 1.0 has SQL Injection via the group.php grid parameter, profile.php fid parameter, or company_details.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17579 | FS Freelancer Clone 1.0 has SQL Injection via the profile.php u parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17578 | FS Crowdfunding Script 1.0 has SQL Injection via the latest_news_details.php id parameter. | HIGH | Dec 13, 2017 |
CVE-2017-17577 | FS Trademe Clone 1.0 has SQL Injection via the search_item.php search parameter or the general_item_details.php id parameter. | HIGH | Dec 13, 2017 |