#php

DedeCMS v5.7.109 has a File Upload vulnerability, leading to remote code execution (RCE).

A File Upload vulnerability in typecho v.1.2.1 allows a remote attacker to execute arbitrary code via the upload and options-general parameters in index.php.

PHPJabbers Bus Reservation System version 1.1 suffers from a remote SQL injection vulnerability.

PHPJabbers Rental Property Booking version 2.0 suffers from a cross site scripting vulnerability.

PHPJabbers Taxi Booking version 2.0 suffers from a cross site scripting vulnerability.

PHPJabbers Cleaning Business version 1.0 suffers from a cross site scripting vulnerability.

WebCalendar version 1.3 suffers from a cross site request forgery vulnerability.

PHPJabbers Night Club Booking version 1.0 suffers from a cross site scripting vulnerability.

PHPJabbers Service Booking Script version 1.0 suffers from a cross site scripting vulnerability.

PHPJabbers Shuttle Booking Software version 1.0 suffers from a cross site scripting vulnerability.