51 matches found
EUVD-2023-37572
Malicious code in bioql PyPI...
EUVD-2023-43977
Malicious code in bioql PyPI...
EUVD-2024-45690
Malicious code in bioql PyPI...
EUVD-2023-37571
Malicious code in bioql PyPI...
CVE-2024-51895
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pankaj9296 Minical Hotel Booking Plugin minical allows Stored XSS.This issue affects Minical Hotel Booking Plugin: from n/a through = 1.0.2...
CVE-2023-33409
Minical 1.0.0 is vulnerable to Cross Site Request Forgery CSRF via minical/public/application/controllers/settings/company.php...
CVE-2023-33410
Minical 1.0.0 and earlier contains a CSV injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on the Customer Name field in the Accounting module that is used to construct a CSV file...
CVE-2023-33408
Minical 1.0.0 is vulnerable to Cross Site Scripting XSS. The vulnerability exists due to insufficient input validation in the application's user input handling in the securityhelper.php file...
CVE-2023-3307
A vulnerability was found in miniCal 1.0.0. It has been rated as critical. This issue affects some unknown processing of the file /booking/showbookings/. The manipulation of the argument searchquery leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to th...
CVE-2024-51895
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pankaj9296 Minical Hotel Booking Plugin minical allows Stored XSS.This issue affects Minical Hotel Booking Plugin: from n/a through = 1.0.2...
CVE-2024-51895 WordPress Minical Hotel Booking Plugin plugin <= 1.0.2 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pankaj9296 Minical Hotel Booking Plugin minical allows Stored XSS.This issue affects Minical Hotel Booking Plugin: from n/a through = 1.0.2...
CVE-2024-51895 WordPress Minical Hotel Booking Plugin plugin <= 1.0.2 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pankaj9296 Minical Hotel Booking Plugin minical allows Stored XSS.This issue affects Minical Hotel Booking Plugin: from n/a through = 1.0.2...
CVE-2024-51895
CVE-2024-51895 is a Stored XSS in the Minical Hotel Booking Plugin for WordPress, caused by improper input neutralization during web page generation. Affected: Minical Hotel Booking Plugin versions n/a through 1.0.2. Connected sources corroborate the vulnerability and its impact. No public fix/ve...
WordPress plugin Minical Hotel Booking Plugin 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Minical Hotel Booking Plugin plugin <= 1.0.2 - Stored Cross Site Scripting (XSS) vulnerability
Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Minical Hotel Booking Plugin versions = 1.0.2...
WordPress Minical Hotel Booking Plugin Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)
Software Minical Hotel Booking Plugin Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51895 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 70c641f67968 Credits SOPROBRO Required privilege...
miniCal SQL Injection Vulnerability
miniCal is miniCal open source an open source PMS. miniCal version 1.0.0 SQL injection vulnerability , the vulnerability stems from the file /booking/showbookings/ parameter searchquery lack of validation of external input SQL statements , an attacker can use this vulnerability to execute illegal...
CVE-2023-3307
A vulnerability was found in miniCal 1.0.0. It has been rated as critical. This issue affects some unknown processing of the file /booking/showbookings/. The manipulation of the argument searchquery leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to th...
CVE-2023-3307
A vulnerability was found in miniCal 1.0.0. It has been rated as critical. This issue affects some unknown processing of the file /booking/showbookings/. The manipulation of the argument searchquery leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to th...
Sql injection
A vulnerability was found in miniCal 1.0.0. It has been rated as critical. This issue affects some unknown processing of the file /booking/showbookings/. The manipulation of the argument searchquery leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to th...