Sourcecodester Online Event Booking and Reservation System 2.3.0 - Cross-Site Scripting

Sourcecodester Online Event Booking and Reservation System 2.3.0 contains a cross-site scripting vulnerability in PHP/MySQL via the msg parameter to /event-management/index.php. An attacker can leverage this vulnerability in order to change the visibility of the website. Once the target user clic...

Online Event Booking and Reservation System 2.3.0 - SQL Injection

Online Event Booking and Reservation System 2.3.0 contains a SQL injection vulnerability in event-management/views. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. id:...

📄 Event Booking Calendar 5.0 Cross Site Scripting

Event Booking Calendar version 5.0 suffers from a cross site scripting vulnerability. Titles: Event Booking Calendar-5.0 Cross-site scripting reflected Author: nu11secur1ty Date: 5/13/2026 Vendor: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/event-booking-calendar/ Reference:...

CVE-2023-40765

User enumeration is found in PHPJabbers Event Booking Calendar v4.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

EUVD-2014-1087

Malware in sbrugna...

EUVD-2014-1086

Malware in sbrugna...

EUVD-2025-8453

Malicious code in bioql PyPI...

EUVD-2025-9743

Malicious code in bioql PyPI...

EUVD-2023-56017

Malicious code in bioql PyPI...

EUVD-2025-3768

Malicious code in bioql PyPI...

EUVD-2023-45318

Malicious code in bioql PyPI...

EUVD-2025-8459

Malicious code in bioql PyPI...

EUVD-2023-56014

Malicious code in bioql PyPI...

EUVD-2025-25631

Malicious code in bioql PyPI...

EUVD-2023-56075

Malicious code in bioql PyPI...

EUVD-2023-44211

Malicious code in bioql PyPI...

EUVD-2023-56019

Malicious code in bioql PyPI...

EUVD-2021-29623

Malicious code in bioql PyPI...

CVE-2024-1321

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to payment bypass in all versions up to, and including, 3.4.2. This is due to the plugin allowing unauthenticated users to update the status of order payments. This makes it possible for unauthenticated...

CVE-2024-1127

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the bookingexportall function in all versions up to, and including, 3.4.1. This makes it possible for authenticated attackers, with...