5 matches found
CVE-2023-48826
Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection via the unique ID field of the Reservations List...
CVE-2023-48826
Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection via the unique ID field of the Reservations List...
CVE-2023-48826
Time Slots Booking Calendar 4.0 (PHPJabbers) is vulnerable to CSV injection via the unique ID field in the Reservations List. The root cause is insufficient input validation when exporting to CSV, enabling crafted ID values to inject CSV content. The vulnerability can lead to high-impact outcomes...
CVE-2023-48826
Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection via the unique ID field of the Reservations List...
PHPJabbers Time Slots Booking Calendar 4.0 CSV Injection
Exploit Title: PHPJabbers Time Slots Booking Calendar v4.0 - CSV Injection Date: 13/11/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/time-slots-booking-calendar/ Version: v4.0 Tested on:...