#php

GZ Multi Hotel Booking System version 1.8 suffers from a cross site scripting vulnerability.

GZ E Learning Platform version 1.8 suffers from a cross site scripting vulnerability.

CRM Platform version 1.8 suffers from a cross site scripting vulnerability.

GZ Forum Script version 1.8 suffers from a cross site scripting vulnerability.

GZ Hotel Booking Script version 1.8 suffers from a cross site scripting vulnerability.

Ticket Booking Script version 1.8 suffers from a cross site scripting vulnerability.

GZ Appointment Scheduling version 1.8 suffers from a cross site scripting vulnerability.

Property Listing Script version 1.0 suffers from a cross site scripting vulnerability.

Car Listing Script version 1.8 suffers from a cross site scripting vulnerability.

A vulnerability, which was classified as critical, was found in Campcodes Retro Cellphone Online Store 1.0. Affected is an unknown function of the file /admin/edit_product.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-232752.