Lucene search
K

72 matches found

Packet Storm
Packet Storm
added 2026/05/13 12:0 a.m.77 views

📄 Event Booking Calendar 5.0 Cross Site Scripting

Event Booking Calendar version 5.0 suffers from a cross site scripting vulnerability. Titles: Event Booking Calendar-5.0 Cross-site scripting reflected Author: nu11secur1ty Date: 5/13/2026 Vendor: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/event-booking-calendar/ Reference:...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.9 views

CVE-2023-40765

User enumeration is found in PHPJabbers Event Booking Calendar v4.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS7AI score0.00746EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-1087

Malware in sbrugna...

7.5CVSS6.4AI score0.01234EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-1086

Malware in sbrugna...

6.8CVSS6.4AI score0.01966EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-56017

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00414EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-44211

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00438EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-56014

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00679EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-56019

Malicious code in bioql PyPI...

4.7CVSS6.6AI score0.0037EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-45318

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00746EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 1:59 a.m.10 views

CVE-2023-3558

A vulnerability classified as problematic has been found in GZ Scripts Event Booking Calendar 1.8. Affected is an unknown function of the file /load.php. The manipulation of the argument firstname/secondname/phone/address1/country leads to cross site scripting. It is possible to launch the attack...

5.4CVSS6.3AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:4 a.m.4 views

CVE-2014-10015

SQL injection vulnerability in load-calendar.php in PHPJabbers Event Booking Calendar 2.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter...

7.5CVSS8.8AI score0.01234EPSS
Exploits1References1
NVD
NVD
added 2025/05/08 4:15 p.m.13 views

CVE-2023-51295

PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

6.5CVSS0.00316EPSS
Exploits2References3
OSV
OSV
added 2025/05/08 4:15 p.m.4 views

CVE-2023-51295

PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

6.5CVSS5.8AI score0.00316EPSS
Exploits2References3
Cvelist
Cvelist
added 2025/05/08 12:0 a.m.9 views

CVE-2023-51295

PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

0.00316EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2025/05/08 12:0 a.m.8 views

CVE-2023-51295

PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

6.5AI score0.00316EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2025/05/08 12:0 a.m.5 views

PT-2025-20388 · Phpjabbers · Phpjabbers Event Booking Calendar

Name of the Vulnerable Software and Affected Versions: PHPJabbers Event Booking Calendar version 4.0 Description: The issue concerns multiple HTML injection vulnerabilities in the name, plugin sms api key, plugin sms country code, and title parameters. This allows for potential malicious code...

6.5CVSS7AI score0.00316EPSS
Exploits2References8
CVE
CVE
added 2025/05/08 12:0 a.m.53 views

CVE-2023-51295

CVE-2023-51295 affects PHPJabbers Event Booking Calendar v4.0, with multiple HTML injection vulnerabilities in parameters name, plugin_sms_api_key, plugin_sms_country_code, and title. The issue is a stored HTML injection risk documented across multiple sources; impact is low to moderate (CVSS v3....

6.5CVSS7AI score0.00316EPSS
Exploits2References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/21 12:25 a.m.11 views

CVE-2023-51298

PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...

4.7CVSS7.3AI score0.0037EPSS
Exploits2References4
OSV
OSV
added 2025/02/19 8:15 p.m.4 views

CVE-2023-51298

PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...

4.7CVSS5.9AI score0.0037EPSS
Exploits2References2
NVD
NVD
added 2025/02/19 8:15 p.m.15 views

CVE-2023-51298

PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...

4.7CVSS0.0037EPSS
Exploits2References2
Rows per page
Query Builder