52 matches found
CVE-2022-50948
Motopress Hotel Booking Lite 4.2.4 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting payloads in accommodation type fields. Attackers can inject script tags through the title and excerpt parameters when creating...
CVE-2022-50948
Motopress Hotel Booking Lite 4.2.4 is affected by a stored cross-site scripting (XSS) vulnerability. The issue allows authenticated attackers to inject script tags via accommodation type payloads, specifically through the title and excerpt fields when creating accommodation types. These scripts c...
CVE-2022-50948
Motopress Hotel Booking Lite 4.2.4 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting payloads in accommodation type fields. Attackers can inject script tags through the title and excerpt parameters when creating...
CVE-2022-50948 Motopress Hotel Booking Lite 4.2.4 Stored Cross-Site Scripting
Motopress Hotel Booking Lite 4.2.4 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting payloads in accommodation type fields. Attackers can inject script tags through the title and excerpt parameters when creating...
CVE-2022-50948 Motopress Hotel Booking Lite 4.2.4 Stored Cross-Site Scripting
Motopress Hotel Booking Lite 4.2.4 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting payloads in accommodation type fields. Attackers can inject script tags through the title and excerpt parameters when creating...
PT-2026-39477
Motopress Hotel Booking Lite 4.2.4 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting payloads in accommodation type fields. Attackers can inject script tags through the title and excerpt parameters when creating...
MotoPress Hotel Booking Lite 跨站脚本漏洞
MotoPress Hotel Booking Lite is a hotel booking software developed by MotoPress. Version 4.2.4 of MotoPress Hotel Booking Lite contains a cross-site scripting vulnerability. This vulnerability stems from a stored-cross-site scripting flaw in the accommodation type field, which may allow...
EUVD-2022-39978
Malicious code in bioql PyPI...
XueShengZhuSu 路径遍历漏洞
XueShengZhuSu is a software used for student accommodation management by a Chinese ashinigit individual developer. A path traversal vulnerability exists in XueShengZhuSu, which is caused by a path traversal vulnerability due to misuse of the File parameter in the file /upload/...
CVE-2024-33979
CVE-2024-33979 describes a Cross-Site Scripting (XSS) vulnerability in Janobe products labeled as PayPal, Credit Card and Debit Card Payment, version 1.0. The issue arises from improperly handling user-supplied input in the query/URL parameters within “/index.php” (notably the q, arrival, departu...
CVE-2022-48765 KVM: LAPIC: Also cancel preemption timer during SET_LAPIC
In the Linux kernel, the following vulnerability has been resolved: KVM: LAPIC: Also cancel preemption timer during SETLAPIC The below warning is splatting during guest reboot. ------------ cut here ------------ WARNING: CPU: 0 PID: 1931 at arch/x86/kvm/x86.c:10322 kvmarchvcpuioctlrun+0x874/0x880...
plymouthstudentaccommodation.com Improper Access Control vulnerability OBB-3807174
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
isleofwightaccommodation.com Improper Access Control vulnerability OBB-3801699
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cambridgeaccommodationservice.com Improper Access Control vulnerability OBB-3794914
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
shareaccommodationtoowoomba.com.au Improper Access Control vulnerability OBB-3782854
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
accommodation.tcd.ie Cross Site Scripting vulnerability OBB-3538712
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
croatia-accommodation.info Cross Site Scripting vulnerability OBB-3273207
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
private-accommodation-croatia.com Cross Site Scripting vulnerability OBB-3225958
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
croatia-accommodation.info Cross Site Scripting vulnerability OBB-3059970
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
csaccommodation.com.au Cross Site Scripting vulnerability OBB-2980492
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...