Lucene search
K

52 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:38 p.m.11 views

CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.4CVSS5.9AI score0.00663EPSS
Exploits1References1
OSV
OSV
added 2025/12/11 9:15 p.m.2 views

UBUNTU-CVE-2025-55816

HotelDruid v3.0.7 and before is vulnerable to Cross Site Scripting XSS in the /modificaapp.php file...

6.1CVSS5.8AI score0.00225EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-24313

Malware in sbrugna...

6.1CVSS6.1AI score0.04878EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-33376

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00663EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-9087

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HotelDruid before v2.3.1 has SQL Injection via the /tabtariffe.php numtariffa1 parameter. CVE-2019-9087 Note that Nessus relies on the presence of the package a...

9.8CVSS8.7AI score0.0164EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-8937

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mesefine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and...

6.1CVSS6AI score0.1068EPSS
Exploits5References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:7 p.m.5 views

CVE-2021-37832

A SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as the application database. A malicious attacker can issue SQL commands to the SQLite database through the vulnerable idappartamenti parameter...

9.8CVSS7.9AI score0.04102EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:7 p.m.6 views

CVE-2021-37833

A reflected cross-site scripting XSS vulnerability exists in multiple pages in version 3.0.2 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands...

6.1CVSS5.8AI score0.04878EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/09/20 12:0 a.m.6 views

HotelDruid SQL Injection Vulnerability

HotelDruid is a hotel management system by the Digitaldruid.net team. The system includes features such as room management, financial management and inventory management. A security vulnerability exists in HotelDruid version v3.0.5, which stems from a SQL injection vulnerability in the parameter...

9.8CVSS8AI score0.0091EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/13 9:15 p.m.4 views

CVE-2023-34537

A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data...

5.4CVSS5.8AI score0.0145EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2023/06/13 8:7 a.m.11 views

Exploit for SQL Injection in Digitaldruid Hoteldruid

CVE-2023-33817 - SQL Injection found in HotelDruid V3.0.5 Ho...

8.8CVSS9.2AI score0.01546EPSS
Exploits2
OSV
OSV
added 2023/05/03 3:15 a.m.3 views

DEBIAN-CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.4CVSS5.9AI score0.00663EPSS
Exploits1References1
NVD
NVD
added 2023/05/03 3:15 a.m.20 views

CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.4CVSS5.4AI score0.00663EPSS
Exploits1References1
OSV
OSV
added 2023/05/03 3:15 a.m.7 views

CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.4CVSS5.8AI score0.00663EPSS
Exploits1References1
Prion
Prion
added 2023/05/03 3:15 a.m.16 views

Cross site scripting

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

4.9CVSS5.4AI score0.00663EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2023/05/03 3:15 a.m.1 views

UBUNTU-CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.4CVSS6.3AI score0.00663EPSS
Exploits1References3
CVE
CVE
added 2023/05/03 12:0 a.m.61 views

CVE-2023-29839

hotel druid 3.0.4 contains a Stored XSS in the Document function, affecting the fields Surname, Name, and Nickname. This is evidenced across multiple CVE records (NVD/Red Hat/OSV/etc.). The vulnerability is described as allowing arbitrary command execution. Practically, the issue is tied to input...

5.4CVSS5.4AI score0.00663EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/03 12:0 a.m.8 views

CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.4AI score0.00663EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/05/03 12:0 a.m.27 views

CVE-2023-29839

A Stored Cross Site Scripting XSS vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function...

5.6AI score0.00663EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/05/03 12:0 a.m.5 views

Hotel Druid 跨站脚本漏洞

Hotel Druid is an open source program developed by DigitalDruid.Net for hotel management. A security vulnerability exists in Hotel Druid version 3.0.4, which stems from a stored cross-site scripting XSS vulnerability that allows execution of arbitrary commands...

5.4CVSS5.7AI score0.00663EPSS
Exploits1References2
Rows per page
Query Builder