Security News

CVE-2017-15990

National Vulnerability Database - Tue, 10/31/2017 - 03:29
Php Inventory & Invoice Management System allows Arbitrary File Upload via dashboard/edit_myaccountdetail/.
Categories: Security News

CVE-2017-15991

National Vulnerability Database - Tue, 10/31/2017 - 03:29
Vastal I-Tech Agent Zone (aka The Real Estate Script) allows SQL Injection in searchCommercial.php via the property_type, city, or posted_by parameter, or searchResidential.php via the property_type, city, or bedroom parameter, a different vulnerability than CVE-2008-3951, CVE-2009-3497, and CVE-2012-0982.
Categories: Security News

CVE-2017-15992

National Vulnerability Database - Tue, 10/31/2017 - 03:29
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
Categories: Security News

CVE-2017-15993

National Vulnerability Database - Tue, 10/31/2017 - 03:29
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
Categories: Security News

Pages