63 matches found
EUVD-2023-56055
Malicious code in bioql PyPI...
EUVD-2023-56056
Malicious code in bioql PyPI...
EUVD-2023-56051
Malicious code in bioql PyPI...
EUVD-2024-53584
Malicious code in bioql PyPI...
EUVD-2024-53585
Malicious code in bioql PyPI...
EUVD-2024-53582
Malicious code in bioql PyPI...
CVE-2023-51334
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cinema Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...
CVE-2023-51330
PHPJabbers Cinema Booking System v1.0 is vulnerable to Reflected Cross-Site Scripting XSS in Now Showing menu "date" parameter...
CVE-2023-51333
PHPJabbers Cinema Booking System v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...
CVE-2023-51335
PHPJabbers Cinema Booking System v1.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS in the "title, name" parameters...
CVE-2023-51335
PHPJabbers Cinema Booking System v1.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS in the "title, name" parameters...
CVE-2023-51334
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cinema Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...
CVE-2023-51335
PHPJabbers Cinema Booking System v1.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS in the "title, name" parameters...
CVE-2023-51333
PHPJabbers Cinema Booking System v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...
CVE-2023-51330
PHPJabbers Cinema Booking System v1.0 is vulnerable to Reflected Cross-Site Scripting XSS in Now Showing menu "date" parameter...
CVE-2023-51333
The CVE-2023-51333 entry concerns PHPJabbers Cinema Booking System v1.0 and identifies a CSV Injection vulnerability stemming from insufficient input validation in the Languages section (Labels) of System Options, which is used to construct CSV exports. The vulnerability allows an attacker to cra...
CVE-2023-51335
CVE-2023-51335 affects PHPJabbers Cinema Booking System v1.0. The issue is a stored Cross-Site Scripting (XSS) vulnerability in the title and name parameters, as described in multiple sources (NVD entry with CVSS v3.1 base score 6.5; related vendor and security pages). The root cause is not expan...
CVE-2023-51334
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cinema Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...
CVE-2023-51334
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cinema Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service DoS via a large amount of generated e-mail messages...
CVE-2023-51330
PHPJabbers Cinema Booking System v1.0 is vulnerable to Reflected Cross-Site Scripting XSS in Now Showing menu "date" parameter...