Lucene search
K

68 matches found

NVD
NVD
added 2025/09/09 5:16 p.m.6 views

CVE-2025-57087

Tenda W30E V16.01.0.19 5037 was discovered to contain a stack overflow in the countryCode parameter in the werlessAdvancedSet function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00456EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.12 views

CVE-2023-48837

Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

5.4CVSS7.1AI score0.00465EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.8 views

CVE-2023-48825

Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

5.4CVSS7.3AI score0.00453EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:20 p.m.8 views

CVE-2021-21954

A command execution vulnerability exists in the wificountrycodeupdate functionality of the homesecurity binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to arbitrary command execution...

9.9CVSS7.2AI score0.02433EPSS
Exploits1References1
OSV
OSV
added 2025/02/20 3:15 p.m.5 views

CVE-2023-51315

PHPJabbers Restaurant Booking System v3.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS in the "seatname, pluginsmsapikey, pluginsmscountrycode, title, name" parameters...

5.4CVSS5.8AI score0.00322EPSS
Exploits2References3
OSV
OSV
added 2025/02/20 3:15 p.m.2 views

CVE-2023-51308

PHPJabbers Car Park Booking System v3.0 is vulnerable to Multiple HTML Injection in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

6.1CVSS5.8AI score0.00325EPSS
Exploits2References3
OSV
OSV
added 2025/02/19 9:15 p.m.4 views

CVE-2023-51303

PHPJabbers Event Ticketing System v1.0 is vulnerable to Multiple HTML Injection in the "lid, name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

6.1CVSS5.8AI score0.00425EPSS
Exploits2References3
OSV
OSV
added 2025/02/19 9:15 p.m.4 views

CVE-2023-51300

PHPJabbers Hotel Booking System v4.0 is vulnerable to Cross-Site Scripting XSS vulnerabilities in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey" parameters...

6.1CVSS5.8AI score0.0035EPSS
Exploits2References3
OSV
OSV
added 2025/02/19 8:15 p.m.5 views

CVE-2023-51299

PHPJabbers Hotel Booking System v4.0 is vulnerable to HTML Injection in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey, title" parameters...

6.1CVSS5.8AI score0.0035EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/02/19 12:0 a.m.5 views

PT-2025-7288 · Phpjabbers · Phpjabbers Event Ticketing System

Name of the Vulnerable Software and Affected Versions: PHPJabbers Event Ticketing System version 1.0 Description: The PHPJabbers Event Ticketing System is vulnerable to multiple HTML injections in the parameters lid, name, plugin sms api key, plugin sms country code, and title. This issue allows...

6.1CVSS7.2AI score0.00425EPSS
Exploits2References7
CNNVD
CNNVD
added 2024/11/25 12:0 a.m.5 views

EnGenius多款产品 注入漏洞

The EnGenius ENH1350EXT and others are an outdoor wireless access point from EnGenius. An injection vulnerability exists in several EnGenius products, which stems from a command injection due to incorrect operation of the parameter countryCode. The following products are affected: EnGenius...

7.2CVSS5.4AI score0.27816EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/07/25 12:0 a.m.6 views

PT-2025-2542 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A cross-site scripting xss vulnerability exists in the set lang CountryCode functionality of login.cgi. A specially crafted HTTP request can lead to a disclosure of sensitive information...

10CVSS6.4AI score0.48086EPSS
Exploits1References4
OSV
OSV
added 2023/12/07 7:15 a.m.4 views

CVE-2023-48837

Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

5.4CVSS5.8AI score0.00465EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2023/12/07 7:15 a.m.4 views

CVE-2023-48838

Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...

5.4CVSS6.1AI score0.00465EPSS
Exploits2References3
NVD
NVD
added 2023/12/07 7:15 a.m.33 views

CVE-2023-48838

Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...

5.4CVSS0.00465EPSS
Exploits2References2
OSV
OSV
added 2023/12/07 7:15 a.m.5 views

CVE-2023-48838

Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...

5.4CVSS5.8AI score0.00465EPSS
Exploits2References2
NVD
NVD
added 2023/12/07 7:15 a.m.21 views

CVE-2023-48839

Appointment Scheduler 3.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the name, pluginsmsapikey, pluginsmscountrycode, calendarid, title, country name, or customername parameter...

5.4CVSS0.00419EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/12/07 7:15 a.m.3 views

CVE-2023-48837

Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

5.4CVSS6.1AI score0.00465EPSS
Exploits2References3
NVD
NVD
added 2023/12/07 7:15 a.m.31 views

CVE-2023-48837

Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

5.4CVSS0.00465EPSS
Exploits2References2
OSV
OSV
added 2023/12/07 7:15 a.m.5 views

CVE-2023-48836

Car Rental Script 3.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the name, pluginsmsapikey, pluginsmscountrycode, calendarid, title, country name, or customername parameter...

5.4CVSS5.8AI score0.00465EPSS
Exploits2References2
Rows per page
Query Builder