#php

Cross Site Scripting vulnerability in Spipu HTML2PDF before v.5.2.8 allows a remote attacker to execute arbitrary code via a crafted script to the forms.php.

ECTouch v2 was discovered to contain a SQL injection vulnerability via the $arr['id'] parameter at \default\helpers\insert.php.

Horse Market Sell and Rent Portal Script version 1.5.7 suffers from a cross site scripting vulnerability.

Jorani version 1.0.3 suffers from a cross site scripting vulnerability.

HighPlus CMS version 0.1.3 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Hospital HMS version 2.7 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Hospital HMS version 2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Hesk Rtl CMS version 1 suffers from a cross site scripting vulnerability.

Hasan MWB version 1 suffers from a cross site scripting vulnerability.

haraj version 1.1 suffers from an add administrator vulnerability.