Mad-robot/CVE-List

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-20336 ↗	Jan 5, 2020Sunday, 5 January 2020, 22:15	6.1 MEDIUM	4.3 MEDIUM
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the search-results.php searchtext parameter is vulnerable to XSS.
CVE-2019-20337 ↗	Jan 5, 2020Sunday, 5 January 2020, 22:15	7.2 HIGH	6.5 MEDIUM
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulnerable to SQL Injection.
CVE-2019-6126 ↗	Jan 11, 2019Friday, 11 January 2019, 05:29	—	5 MEDIUM
The Admin Panel of PHP Scripts Mall Advance Peer to Peer MLM Script v1.7.0 allows remote attackers to bypass intended access restrictions by directly navigating to admin/dashboard.php or admin/user.php, as demonstrated by disclosure of information about users and staff.