481 matches found
CVE-2020-25270
PHPGurukul hostel-management-system 2.1 allows XSS via Guardian Name, Guardian Relation, Guardian Contact no, Address, or City...
PT-2020-16053 · Phpgurukul · Phpgurukul Hospital Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul hostel-management-system version 2.1 Description: The issue allows for XSS attacks through various input fields, including Guardian Name, Guardian Relation, Guardian Contact no, Address, or City. Recommendations: For PHPGurukul...
arambol-hostel.ru Cross Site Scripting vulnerability OBB-1321456
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
gallery-hostel.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1189305 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
PHPGurukul Hostel Management System SQL Injection Vulnerability
PHPGurukul Hostel Management System is a hostel management system. A SQL injection vulnerability exists in version v2.0 of the PHPGurukul Hostel Management System. The vulnerability stems from a database-based application that lacks validation of externally entered SQL statements. An attacker can...
CVE-2020-5510
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...
CVE-2020-5510
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...
Sql injection
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...
CVE-2020-5510
PHPGurukul Hostel Management System v2.0 is affected by an SQL injection in the full-profile.php file via the id parameter. The root cause is unsanitized external input allowing crafted SQL commands, potentially enabling data leakage or modification as described. Remediation and mitigations are m...
CVE-2020-5510
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file...
PT-2020-18487
Name of the Vulnerable Software and Affected Versions PHPGurukul Hostel Management System version 2.0 Description The issue allows SQL injection via the id parameter in the "full-profile.php" file. This could potentially be exploited to extract or modify sensitive data. Recommendations For...
Hostel Management System 2.0 SQL Injection
Exploit Title: Hostel Management System 2.0 - 'id' SQL Injection Google Dork: intitle: "Hostel management system" Date: 2020-01-03 Exploit Author: FULLSHADE Vendor Homepage: https://phpgurukul.com Software Link: https://phpgurukul.com/hostel-management-system/ Version: v2.0 Tested on: Windows CVE...
CVE-2019-12345
XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...
Cross site scripting
XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...
CVE-2019-12345
XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...
CVE-2019-12345
CVE-2019-12345 describes a Cross-Site Scripting vulnerability in the WordPress Kiboko Hostel plugin, affecting versions prior to 1.1.4. Multiple connected sources (WPVulndb, CVE trackers, and Red Hat/NVD mirrors) corroborate an XSS flaw in the plugin’s Booking-related UI that can execute client-s...
CVE-2019-12345
XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress...
WordPress Hostel plugin <= 1.1.3 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability
Unauthenticated Stored Cross-Site Scripting XSS vulnerability found by Admavidhya N in WordPress Hostel plugin versions = 1.1.3. Solution Update the WordPress Hostel plugin to the latest available version at least 1.1.4...
WordPress Kiboko Hostel Plugin Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Kiboko Hostel plugin is one of the online booking plugins used in it. A cross-site scripting vulnerability exists in WordPress Kiboko...
Hostel Plugin <= 1.1.3 - Unauthenticated Stored XSS
This vulnerability allows any user can inject Javascript code and the code will be executed on the admin side when he visits the Bookings Page Authentication Required:No Affected Version: 1.1.3 or possibly below Fixed version:1.1.4...