Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.12 views

CVE-2023-43376

A cross-site scripting XSS vulnerability in /hoteldruid/clienti.php of Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the nometipotariffa1 parameter...

5.4CVSS5.7AI score0.00423EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-18472

Malware in sbrugna...

9.8CVSS9.3AI score0.0164EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-25002

Malware in sbrugna...

6.1CVSS6.1AI score0.01005EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-7682

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00564EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-43378

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-site scripting XSS vulnerability in Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...

6.1CVSS5.6AI score0.00278EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:6 a.m.5 views

CVE-2023-47164

Cross-site scripting vulnerability in HOTELDRUID 3.0.5 and earlier allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product...

6.1CVSS6.9AI score0.00705EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:56 a.m.6 views

CVE-2023-34537

A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data...

5.4CVSS5.8AI score0.0145EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:53 a.m.8 views

CVE-2023-33817

hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability...

8.8CVSS8.1AI score0.01546EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:13 p.m.8 views

CVE-2018-1000871

HotelDruid HotelDruid 2.3.0 version 2.3.0 and earlier contains a SQL Injection vulnerability in "idutentemod" parameter in gestioneutenti.php file that can result in An attacker can dump all the database records of backend webserver. This attack appear to be exploitable via the attack can be done...

9.8CVSS7.8AI score0.01622EPSS
Exploits1References1
OSV
OSV
added 2023/09/20 7:15 p.m.4 views

CVE-2023-43374

Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the idutentelog parameter at /hoteldruid/personalizza.php...

9.8CVSS8.1AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/20 12:0 a.m.3 views

PT-2023-28811 · Unknown +1 · Hoteldruid +1

Name of the Vulnerable Software and Affected Versions: Hoteldruid version 3.0.5 Description: A SQL injection vulnerability was discovered in Hoteldruid via the id utente log parameter at the "/hoteldruid/personalizza.php" API endpoint. This issue allows for potential SQL injection attacks...

9.8CVSS7.5AI score0.03272EPSS
Exploits1References15
Vulnrichment
Vulnrichment
added 2023/06/13 12:0 a.m.11 views

CVE-2023-33817

hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability...

8.1AI score0.01546EPSS
Exploits2References1
Rows per page
Query Builder