Lucene search
K

17 matches found

CNVD
CNVD
added 2025/07/23 12:0 a.m.3 views

Online Banquet Booking System booking-search.php file cross-site scripting vulnerability

Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which stems from ineffective filtering of inputs to the searchdata parameter in the /admin/booking-search.php file. No details of the vulnerability are...

5.4CVSS4.5AI score0.00306EPSS
Exploits1References1
OSV
OSV
added 2025/07/21 2:15 p.m.5 views

CVE-2025-7926

A vulnerability, which was classified as problematic, was found in PHPGurukul Online Banquet Booking System 1.0. This affects an unknown part of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to cross site scripting. It is possible to initiate the attack...

5.4CVSS3.8AI score0.00306EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.5 views

PHPGurukul Online Banquet Booking System 代码注入漏洞

Online Banquet Booking System is an online banquet booking system. A cross-site scripting vulnerability exists in Online Banquet Booking System, which stems from ineffective filtering of inputs to the searchdata parameter in the /admin/booking-search.php file. No details of the vulnerability are...

5.4CVSS6.2AI score0.00306EPSS
Exploits1References6
OSV
OSV
added 2025/05/05 4:16 a.m.4 views

CVE-2025-4263

A vulnerability was found in PHPGurukul Online DJ Booking Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to sql injection. The attack may be initiated remotel...

9.8CVSS5.8AI score0.00428EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/05/05 12:0 a.m.4 views

PHPGurukul Online DJ Booking Management System 注入漏洞

PHPGurukul Online DJ Booking Management System is an online DJ booking management system from PHPGurukul. An injection vulnerability exists in version 1.0 of the PHPGurukul Online DJ Booking Management System, which stems from improper handling of the searchdata parameter in the file...

9.8CVSS7.8AI score0.00428EPSS
Exploits1References6
OSV
OSV
added 2025/03/17 3:15 p.m.3 views

CVE-2025-2382

A vulnerability classified as critical was found in PHPGurukul Online Banquet Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched...

9.8CVSS5.8AI score0.00487EPSS
Exploits1References5
OSV
OSV
added 2024/10/29 2:15 p.m.2 views

CVE-2024-51076

A Reflected Cross Site Scripting XSS vulnerability was found in /odms/admin/booking-search.php in PHPGurukul Online DJ Booking Management System 1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter...

6.1CVSS6.1AI score0.00422EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/10/29 12:0 a.m.4 views

PT-2024-34518 · Unknown · Phpgurukul Online Dj Booking Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Online DJ Booking Management System version 1.0 Description: A Reflected Cross Site Scripting XSS issue was found in the "/odms/admin/booking-search.php" API endpoint, allowing remote attackers to execute arbitrary code via the...

6.1CVSS6.8AI score0.00422EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/10/29 12:0 a.m.4 views

PHPGurukul Online DJ Booking Management System 安全漏洞

PHPGurukul Online DJ Booking Management System is an online DJ booking management system from PHPGurukul. A security vulnerability exists in PHPGurukul Online DJ Booking Management System v1.0, which originates from a reflected cross-site scripting vulnerability in the searchdata parameter of the...

6.1CVSS6.1AI score0.00422EPSS
Exploits1References1
OSV
OSV
added 2024/03/21 2:52 a.m.3 views

CVE-2024-2713

A vulnerability, which was classified as critical, was found in Campcodes Complete Online DJ Booking System 1.0. Affected is an unknown function of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to sql injection. It is possible to launch the attack remotely...

6.5CVSS5.7AI score0.00601EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.4 views

Campcodes Complete Online DJ Booking System SQL注入漏洞

Campcodes Complete Online DJ Booking System is an online DJ booking system from Campcodes, Inc. A SQL injection vulnerability exists in version 1.0 of the Campcodes Complete Online DJ Booking System, which originates from a SQL injection vulnerability in the searchdata parameter of the...

6.5CVSS7AI score0.00601EPSS
Exploits1References4
OSV
OSV
added 2024/03/20 9:15 p.m.4 views

CVE-2024-2717

A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/booking-search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack can be initiated...

6.1CVSS3.9AI score0.00506EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.3 views

Campcodes Complete Online DJ Booking System Cross-Site Scripting Vulnerability

Campcodes Complete Online DJ Booking System is an online DJ booking system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Complete Online DJ Booking System, which stems from a cross-site scripting vulnerability in the searchdata parameter of the...

6.1CVSS6.2AI score0.00506EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.5 views

PT-2024-21665 · Unknown · Campcodes Complete Online Dj Booking System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online DJ Booking System version 1.0 Description: A critical issue was found in the system, affecting an unknown function of the file /admin/booking-search.php. The manipulation of the searchdata argument leads to SQL...

6.5CVSS7AI score0.00601EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.16 views

PT-2024-21703 · Unknown · Campcodes Complete Online Dj Booking System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Online DJ Booking System version 1.0 Description: A vulnerability was found in the file /admin/booking-search.php, where the manipulation of the searchdata argument leads to cross site scripting. The attack can be initiated...

6.1CVSS4.1AI score0.00506EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/06/18 12:0 a.m.5 views

miniCal SQL注入漏洞

miniCal is miniCal open source an open source PMS. miniCal version 1.0.0 SQL injection vulnerability , the vulnerability stems from the file /booking/showbookings/ parameter searchquery lack of validation of external input SQL statements , an attacker can use this vulnerability to execute illegal...

8.8CVSS8.2AI score0.00871EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/04/11 3:15 p.m.6 views

CVE-2022-0919

The Salon booking system Free and pro WordPress plugins before 7.6.3 do not have proper authorisation when searching bookings, allowing any unauthenticated users to search other's booking, as well as retrieve sensitive information about the bookings, such as the full name, email and phone number ...

5.3CVSS5.9AI score0.01146EPSS
Exploits2References2
Rows per page
Query Builder