3 matches found
CVE-2026-14764
A CVE (CVE-2026-14764) affects code-projects Hotel and Tourism Reservation 1.0. The vulnerability is an SQL injection in the Event Management Page, specifically via the fdetails argument in the file /admin/add_event.php. Exploitation can be performed remotely, and public disclosures exist. CVSS m...
CVE-2009-4944
Multiple cross-site scripting XSS vulnerabilities in ATRC ACollab 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 address parameter to profile.php or the 2 description parameter to events/addevent.php. NOTE: the provenance of this information is unknown; the details ar...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ATRC ACollab 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 address parameter to profile.php or the 2 description parameter to events/addevent.php. NOTE: the provenance of this information is unknown; the details ar...