CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

HotelDruid Hotel Management Software 3.0.3 - Cross-Site Scripting

HotelDruid Hotel Management Software 3.0.3 contains a cross-site scripting vulnerability via the prezzoperiodo4 parameter in creaprezzi.php. id: CVE-2022-26564 info: name: HotelDruid Hotel Management Software 3.0.3 - Cross-Site Scripting author: alexrydzak severity: medium description: | HotelDru...

6.1CVSS6.2AI score0.00547EPSS

Exploits1References5

Nuclei•added yesterday•14 views

HotelDruid 2.3.0 - Cross-Site Scripting

HotelDruid 2.3.0 contains a cross-site scripting vulnerability affecting nsextt, cambia1, mesefine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizzatabelle.php. id: CVE-2019-8937 info: name: HotelDruid 2.3.0 - Cross-Site Scripting author: LogicalHunte...

6.1CVSS6.2AI score0.43768EPSS

Exploits5References5

Nuclei•added yesterday•23 views

Hotel Druid 3.0.2 - Cross-Site Scripting

Hotel Druid 3.0.2 contains a cross-site scripting vulnerability in multiple pages which allows for arbitrary execution of JavaScript commands. id: CVE-2021-37833 info: name: Hotel Druid 3.0.2 - Cross-Site Scripting author: pikpikcu,s4e-io severity: medium description: Hotel Druid 3.0.2 contains a...

6.1CVSS6.5AI score0.11566EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-7681

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.01662EPSS

Exploits2References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-25747

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross Site Scripting vulnerability in DigitalDruid HotelDruid v.3.0.7 allows an attacker to execute arbitrary code and obtain sensitive information via the...

5.4CVSS5.7AI score0.01662EPSS

Exploits2References3

RedhatCVE•added 2025/05/22 6:42 p.m.•3 views

CVE-2021-38559

DigitalDruid HotelDruid 3.0.2 has an XSS vulnerability in prenota.php affecting the fineperiodo1 parameter...

6.1CVSS6AI score0.00254EPSS

Exploits1References1

RedhatCVE•added 2025/03/15 4:39 a.m.•14 views

CVE-2025-25747

Cross Site Scripting vulnerability in DigitalDruid HotelDruid v.3.0.7 allows an attacker to execute arbitrary code and obtain sensitive information via the ripristinabackup parameter in the creabackup.php endpoint...

5.4CVSS6.8AI score0.01662EPSS

Exploits2References1

OSV•added 2025/03/11 4:15 p.m.•8 views

CVE-2025-25747

5.4CVSS6.9AI score0.01662EPSS

Exploits2References2

NVD•added 2025/03/11 4:15 p.m.•11 views

CVE-2025-25747

5.4CVSS0.01662EPSS

Exploits2References2

OSV•added 2025/03/11 4:15 p.m.•2 views

UBUNTU-CVE-2025-25747

5.4CVSS6.2AI score0.01662EPSS

Exploits2References4

Vulnrichment•added 2025/03/11 12:0 a.m.•10 views

CVE-2025-25747

7.2AI score0.01662EPSS

Exploits2References2

CVE•added 2025/03/11 12:0 a.m.•67 views

CVE-2025-25747

CVE-2025-25747: A Cross Site Scripting vulnerability in DigitalDruid HotelDruid v3.0.7 allows an attacker to execute arbitrary code and disclose sensitive information via the ripristina_backup parameter in crea_backup.php. Root cause details are not provided beyond the parameter abuse; the provid...

5.4CVSS7AI score0.01662EPSS

Exploits2References2Affected Software1

Cvelist•added 2025/03/11 12:0 a.m.•13 views

CVE-2025-25747

0.01662EPSS

Exploits2References2

Debian CVE•added 2025/03/11 12:0 a.m.•10 views

CVE-2025-25747

5.4CVSS5.7AI score0.01662EPSS

Exploits2

Tenable Nessus•added 2025/03/05 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2021-38559

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DigitalDruid HotelDruid 3.0.2 has an XSS vulnerability in prenota.php affecting the fineperiodo1 parameter. CVE-2021-38559 Note that Nessus relies on the presen...

6.1CVSS6.1AI score0.00254EPSS

Exploits1References3

Check Point Advisories•added 2022/11/22 12:0 a.m.•6 views

DigitalDruid HotelDruid Remote Code Execution (CVE-2022-22909)

A remote code execution vulnerability exists in DigitalDruid HotelDruid. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS5.3AI score0.33104EPSS

Exploits6