Lucene search
K

5 matches found

OSV
OSV
added 2023/09/20 7:15 p.m.1 views

DEBIAN-CVE-2023-43377

A cross-site scripting XSS vulnerability in /hoteldruid/visualizzacontratto.php of Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the destinatarioemail1 parameter...

5.4CVSS5.7AI score0.00423EPSS
Exploits1References1
OSV
OSV
added 2023/09/20 7:15 p.m.1 views

UBUNTU-CVE-2023-43377

A cross-site scripting XSS vulnerability in /hoteldruid/visualizzacontratto.php of Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the destinatarioemail1 parameter...

5.4CVSS6AI score0.00423EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/09/20 12:0 a.m.4 views

HotelDruid SQL Injection Vulnerability

HotelDruid is a hotel management system by the Digitaldruid.net team. The system includes features such as room management, financial management and inventory management. A security vulnerability exists in HotelDruid version v3.0.5, which originates from a cross-site scripting XSS vulnerability i...

5.4CVSS5.9AI score0.00423EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/09/20 12:0 a.m.2 views

PT-2023-28814 · Unknown +1 · Hoteldruid +1

Name of the Vulnerable Software and Affected Versions: Hoteldruid version 3.0.5 Description: A cross-site scripting XSS vulnerability in /hoteldruid/visualizza contratto.php allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the destinatario email1...

5.4CVSS5.9AI score0.00423EPSS
Exploits1References15
NVD
NVD
added 2019/06/24 6:15 p.m.23 views

CVE-2019-9085

Hoteldruid before v2.3.1 allows remote authenticated users to cause a denial of service invoice-creation outage via the nfile parameter to visualizzacontratto.php with invalid arguments any non-numeric value, as demonstrated by the anno=2019&idtransazione=1&numerocontratto=1&nfile=a query string ...

6.5CVSS6.2AI score0.01966EPSS
Exploits1References2
Rows per page
Query Builder