Security
Headlines
HeadlinesLatestCVEs

Tag

#xss

PHPJabbers Taxi Booking 2.0 Cross Site Scripting

PHPJabbers Taxi Booking version 2.0 suffers from a cross site scripting vulnerability.

Packet Storm
Open in Source
#sql#xss#vulnerability#web#windows#php#auth#ssh
PHPJabbers Cleaning Business 1.0 Cross Site Scripting

PHPJabbers Cleaning Business version 1.0 suffers from a cross site scripting vulnerability.

PHPJabbers Night Club Booking 1.0 Cross Site Scripting

PHPJabbers Night Club Booking version 1.0 suffers from a cross site scripting vulnerability.

PHPJabbers Service Booking Script 1.0 Cross Site Scripting

PHPJabbers Service Booking Script version 1.0 suffers from a cross site scripting vulnerability.

PHPJabbers Shuttle Booking Software 1.0 Cross Site Scripting

PHPJabbers Shuttle Booking Software version 1.0 suffers from a cross site scripting vulnerability.

WebIncorp CMS 1.0 Cross Site Scripting

WebIncorp CMS version 1.0 suffers from a cross site scripting vulnerability.

PHPJabbers Bus Reservation System 1.1 Cross Site Scripting

PHPJabbers Bus Reservation System version 1.1 suffers from a cross site scripting vulnerability.

PHPJabbers Availability Booking Calendar 5.0 Cross Site Scripting

PHPJabbers Availability Booking Calendar version 5.0 suffers from a cross site scripting vulnerability.

CVE-2023-4119

A vulnerability has been found in Academy LMS 6.0 and classified as problematic. This vulnerability affects unknown code of the file /academy/home/courses. The manipulation of the argument query/sort_by leads to cross site scripting. The attack can be initiated remotely. VDB-235966 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2023-4117

A vulnerability, which was classified as problematic, has been found in PHP Jabbers Rental Property Booking 2.0. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument index leads to cross site scripting. The attack may be launched remotely. The identifier of this vulnerability is VDB-235964. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.