3 matches found
PHPJabbers Shuttle Booking Software 1.0 - Reflected XSS
Exploit Title: PHPJabbers Shuttle Booking Software 1.0 - Reflected XSS Exploit Author: CraCkEr Date: 20/07/2023 Vendor: PHPJabbers Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/shuttle-booking-software/ Version: 1.0 Tested on: Windows 10 Pro Impact:...
CVE-2023-4112 PHP Jabbers Shuttle Booking Software index.php cross site scripting
A vulnerability was found in PHP Jabbers Shuttle Booking Software 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The associated identifier of this...
CVE-2023-4112
PHP Jabbers Shuttle Booking Software 1.0 contains a Cross-Site Scripting (XSS) flaw in /index.php. The Nuclei template and ExploitDB entry describe an attacker sending a malicious URL via email/IM to exploit RXSS and potentially steal session tokens or credentials. Root cause: insufficient saniti...