#google

Hospital HMS version 2.7 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Hospital HMS version 2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Hesk Rtl CMS version 1 suffers from a cross site scripting vulnerability.

Hasan MWB version 1 suffers from a cross site scripting vulnerability.

haraj version 1.1 suffers from an add administrator vulnerability.

HaasCMS version 1.0 suffers from a cross site scripting vulnerability.

Gusto Recipes Management version 1.5.1 suffers from a cross site scripting vulnerability.

Global Domains International version 2.0 suffers from a cross site scripting vulnerability.

FlightPath LMS version 5.0-rc2 suffers from a cross site scripting vulnerability.

User enumeration is found in PHPJabbers Taxi Booking Script v2.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.