Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
hot scripts clone project hot scripts clone 3.1