Lucene search
K

84 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-52252

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00721EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-54000

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.05109EPSS
Exploits3References3
Positive Technologies
Positive Technologies
added 2025/06/02 12:0 a.m.4 views

PT-2025-23557 · Unknown · Booking/Rental Manager

Name of the Vulnerable Software and Affected Versions: Booking and Rental Manager versions 2.3.8 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by ACLs. Recommendations: For versions 2.3.8 and...

6.5CVSS6.2AI score0.00236EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.8 views

CVE-2023-48830

Shuttle Booking Software 2.0 is vulnerable to CSV Injection in the Languages section via an export...

8.8CVSS7.2AI score0.01201EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/23 4:16 a.m.7 views

CVE-2023-4112

A vulnerability was found in PHP Jabbers Shuttle Booking Software 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The associated identifier of this...

6.1CVSS6.2AI score0.05177EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2025/05/23 4:15 a.m.10 views

CVE-2023-48172

A Cross Site Scripting XSS vulnerability in Shuttle Booking Software 2.0 allows a remote attacker to inject JavaScript via the name, description, title, or address parameter to index.php...

5.4CVSS5.9AI score0.00721EPSS
Exploits3
CVE
CVE
added 2025/05/07 2:19 p.m.58 views

CVE-2025-47498

CVE-2025-47498 affects WordPress Hotel Booking (Hotel Booking plugin) versions n/a through 3.6 and is a Local File Inclusion due to improper filename control in PHP include/require statements. The CVSS v3.1 base score is 7.5 (HIGH) with network, high exploit complexity, low privileges, and no use...

7.5CVSS7.2AI score0.0061EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/22 12:0 a.m.6 views

WordPress Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue Theme <= 4.2.2 is vulnerable to Broken Access Control

Software Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue Type Theme Vulnerable versions = 4.2.2 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-39398 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...

4.3CVSS6.6AI score0.00198EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/22 12:36 a.m.12 views

CVE-2023-51321

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Night Club Booking Software v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...

6.5CVSS6.7AI score0.00358EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2025/02/22 12:34 a.m.10 views

CVE-2023-51320

PHPJabbers Night Club Booking Software v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV...

5.3CVSS7.4AI score0.00477EPSS
Exploits2References4
NVD
NVD
added 2025/02/20 4:15 p.m.26 views

CVE-2023-51321

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Night Club Booking Software v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...

6.5CVSS0.00358EPSS
Exploits2References3
NVD
NVD
added 2025/02/20 4:15 p.m.12 views

CVE-2023-51320

PHPJabbers Night Club Booking Software v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV...

5.3CVSS0.00477EPSS
Exploits2References3
CVE
CVE
added 2025/02/20 12:0 a.m.52 views

CVE-2023-51321

CVE-2023-51321 describes a missing rate limit in the Forgot Password/Forgot Email flow of PHPJabbers Night Club Booking Software v1.0, enabling an attacker to trigger a high volume of email messages to a legitimate user and potentially cause a Denial of Service. The affected product is PHPJabbers...

6.5CVSS6.4AI score0.00358EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2025/02/20 12:0 a.m.21 views

CVE-2023-51321

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Night Club Booking Software v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...

0.00358EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2025/02/20 12:0 a.m.9 views

CVE-2023-51321

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Night Club Booking Software v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...

6.4AI score0.00358EPSS
Exploits2References2
OSV
OSV
added 2024/04/15 8:15 a.m.4 views

CVE-2024-32125

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Booking Algorithms BA Book Everything.This issue affects BA Book Everything: from n/a through 1.6.4...

8.8CVSS5.8AI score0.00577EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.325 views

PHPJabbers Night Club Booking Software 1.0 CSV Injection

Exploit Title: PHPJabbers Night Club Booking Software v1.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/night-club-booking-software/sectionDemo Version: v1.0 Test...

7.4AI score0.00477EPSS
Exploits2
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.6 views

Night Club Booking Software Security Breach

Night Club Booking Software is a PHPJabbers open source night club booking software. A security vulnerability exists in Night Club Booking Software version 1.0, which stems from a lost rate limit vulnerability...

6.5CVSS6.8AI score0.00358EPSS
Exploits2References3
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.318 views

PHPJabbers Night Club Booking Software 1.0 Missing Rate Limiting

Exploit Title: PHPJabbers Night Club Booking Software v1.0 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/night-club-booking-software/sectionDemo Version: v1.0 Test...

7.4AI score0.00358EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2023/12/07 7:15 a.m.4 views

CVE-2023-48830

Shuttle Booking Software 2.0 is vulnerable to CSV Injection in the Languages section via an export...

8.8CVSS7.3AI score0.01201EPSS
Exploits2References3
Rows per page
Query Builder