Lucene search
+L

481 matches found

Cvelist
Cvelist
added 2020/10/08 12:32 p.m.28 views

CVE-2020-25270

PHPGurukul hostel-management-system 2.1 allows XSS via Guardian Name, Guardian Relation, Guardian Contact no, Address, or City...

5.3AI score0.03185EPSS
Exploits3References3
Positive Technologies
Positive Technologies
added 2020/10/08 12:0 a.m.8 views

PT-2020-16053 · Phpgurukul · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul hostel-management-system version 2.1 Description: The issue allows for XSS attacks through various input fields, including Guardian Name, Guardian Relation, Guardian Contact no, Address, or City. Recommendations: For PHPGurukul...

5.4CVSS5.2AI score0.03185EPSS
Exploits3References5
Openbugbounty
Openbugbounty
added 2020/09/10 1:4 p.m.8 views

arambol-hostel.ru Cross Site Scripting vulnerability OBB-1321456

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/06/08 5:41 p.m.9 views

gallery-hostel.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1189305 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

Exploits0
CNVD
CNVD
added 2020/02/17 12:0 a.m.4 views

PHPGurukul Hostel Management System SQL Injection Vulnerability

PHPGurukul Hostel Management System is a hostel management system. A SQL injection vulnerability exists in version v2.0 of the PHPGurukul Hostel Management System. The vulnerability stems from a database-based application that lacks validation of externally entered SQL statements. An attacker can...

10CVSS8.2AI score0.02112EPSS
Exploits1References1
OSV
OSV
added 2020/01/08 6:15 p.m.3 views

CVE-2020-5510

PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...

9.8CVSS7.3AI score
Exploits0References2
NVD
NVD
added 2020/01/08 6:15 p.m.12 views

CVE-2020-5510

PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...

10CVSS9.8AI score0.02112EPSS
Exploits1References2
Prion
Prion
added 2020/01/08 6:15 p.m.18 views

Sql injection

PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...

10CVSS9.7AI score0.02112EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/01/08 5:32 p.m.52 views

CVE-2020-5510

PHPGurukul Hostel Management System v2.0 is affected by an SQL injection in the full-profile.php file via the id parameter. The root cause is unsanitized external input allowing crafted SQL commands, potentially enabling data leakage or modification as described. Remediation and mitigations are m...

10CVSS9.7AI score0.02112EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/01/08 5:32 p.m.19 views

CVE-2020-5510

PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...

9.9AI score0.02112EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2020/01/08 12:0 a.m.6 views

PT-2020-18487

Name of the Vulnerable Software and Affected Versions PHPGurukul Hostel Management System version 2.0 Description The issue allows SQL injection via the id parameter in the "full-profile.php" file. This could potentially be exploited to extract or modify sensitive data. Recommendations For...

10CVSS9.4AI score0.02112EPSS
Exploits1References5
Packet Storm
Packet Storm
added 2020/01/06 12:0 a.m.143 views

Hostel Management System 2.0 SQL Injection

Exploit Title: Hostel Management System 2.0 - 'id' SQL Injection Google Dork: intitle: "Hostel management system" Date: 2020-01-03 Exploit Author: FULLSHADE Vendor Homepage: https://phpgurukul.com Software Link: https://phpgurukul.com/hostel-management-system/ Version: v2.0 Tested on: Windows CVE...

0.1AI score
Exploits0
NVD
NVD
added 2019/05/27 9:29 p.m.16 views

CVE-2019-12345

XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...

6.1CVSS6.1AI score0.01165EPSS
Exploits0References2
Prion
Prion
added 2019/05/27 9:29 p.m.19 views

Cross site scripting

XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...

4.3CVSS6AI score0.01165EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/05/27 9:29 p.m.4 views

CVE-2019-12345

XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...

6.1CVSS6.3AI score0.01165EPSS
Exploits0References2
CVE
CVE
added 2019/05/27 8:17 p.m.93 views

CVE-2019-12345

CVE-2019-12345 describes a Cross-Site Scripting vulnerability in the WordPress Kiboko Hostel plugin, affecting versions prior to 1.1.4. Multiple connected sources (WPVulndb, CVE trackers, and Red Hat/NVD mirrors) corroborate an XSS flaw in the plugin’s Booking-related UI that can execute client-s...

6.1CVSS6AI score0.01165EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/05/27 8:17 p.m.20 views

CVE-2019-12345

XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...

6.1AI score0.01165EPSS
Exploits0References2
Patchstack
Patchstack
added 2019/05/27 12:0 a.m.13 views

WordPress Hostel plugin <= 1.1.3 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

Unauthenticated Stored Cross-Site Scripting XSS vulnerability found by Admavidhya N in WordPress Hostel plugin versions = 1.1.3. Solution Update the WordPress Hostel plugin to the latest available version at least 1.1.4...

1.6AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/05/27 12:0 a.m.9 views

WordPress Kiboko Hostel Plugin Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Kiboko Hostel plugin is one of the online booking plugins used in it. A cross-site scripting vulnerability exists in WordPress Kiboko...

6.1CVSS6.2AI score0.01165EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2019/05/25 12:0 a.m.24 views

Hostel Plugin <= 1.1.3 - Unauthenticated Stored XSS

This vulnerability allows any user can inject Javascript code and the code will be executed on the admin side when he visits the Bookings Page Authentication Required:No Affected Version: 1.1.3 or possibly below Fixed version:1.1.4...

4.3CVSS3.3AI score0.01165EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder