2 matches found
Online Banquet Booking System booking-search.php file cross-site scripting vulnerability
Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which stems from ineffective filtering of inputs to the searchdata parameter in the /admin/booking-search.php file. No details of the vulnerability are...
CVE-2022-28992
A Cross-Site Request Forgery CSRF in Online Banquet Booking System v1.0 allows attackers to change admin credentials via a crafted POST request...