6 matches found
CVE-2023-51296
PHPJabbers Event Booking Calendar v4.0 is vulnerable to Cross-Site Scripting XSS in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey" parameters which allows attackers to execute arbitrary code...
CVE-2023-51296
creationtimestamp| type| source ---|---|--- 2025-02-19 22:05:43+00:00| seen| https://t.me/cvedetector/18474 2025-02-19 22:06:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3likrwtukyo24 2025-02-20 21:02:36+00:00| seen|...
CVE-2023-51296
PHPJabbers Event Booking Calendar v4.0 is vulnerable to Cross-Site Scripting XSS in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey" parameters which allows attackers to execute arbitrary code...
CVE-2023-51296
PHPJabbers Event Booking Calendar v4.0 is vulnerable to Cross-Site Scripting XSS in the "name, pluginsmsapikey, pluginsmscountrycode, title, pluginsmsapikey" parameters which allows attackers to execute arbitrary code...
CVE-2023-51296
Summary: CVE-2023-51296 affects PHPJabbers Event Booking Calendar v4.0, with a stored Cross-Site Scripting (XSS) flaw in the fields named in the description (name, plugin_sms_api_key, plugin_sms_country_code, title) that can lead to arbitrary code execution. The exploit details in the packetstorm...
PHPJabbers Event Booking Calendar 4.0 Cross Site Scripting / HTML Injection
Exploit Title: PHPJabbers Event Booking Calendar v4.0 - Multiple Stored XSS Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/event-booking-calendar/sectionDemo Version: v4.0 Tested o...