EUVD-2014-1039

Malware in sbrugna...

EUVD-2023-44217

Malicious code in bioql PyPI...

CVE-2023-3564

A vulnerability was found in GZ Scripts GZ Multi Hotel Booking System 1.8. It has been classified as problematic. Affected is an unknown function of the file /index.php. The manipulation of the argument adults/children/calid leads to cross site scripting. It is possible to launch the attack...

CVE-2013-7419

Cross-site scripting XSS vulnerability in includes/refreshDate.php in the Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the roomid parameter...

CVE-2023-3564

A vulnerability was found in GZ Scripts GZ Multi Hotel Booking System 1.8. It has been classified as problematic. Affected is an unknown function of the file /index.php. The manipulation of the argument adults/children/calid leads to cross site scripting. It is possible to launch the attack...

CVE-2023-3564 GZ Scripts GZ Multi Hotel Booking System index.php cross site scripting

A vulnerability was found in GZ Scripts GZ Multi Hotel Booking System 1.8. It has been classified as problematic. Affected is an unknown function of the file /index.php. The manipulation of the argument adults/children/calid leads to cross site scripting. It is possible to launch the attack...

CVE-2023-3564

The CVE-2023-3564 entry concerns GZ Scripts GZ Multi Hotel Booking System v1.8. The vulnerability is a Cross-Site Scripting flaw in an unknown function of /index.php, triggered by manipulating adults/children/cal_id, with remote exploitation possible. Connected sources (PT-2023-25234) provide con...

Wordpress Js-Multi-Hotel 插件-refreshDate.php文件-跨站脚本漏洞

No description provided by source...

WordPress JS Multi Hotel Plugin <= 2.2.1 - Full Path Disclosure

This plugin is prone to a full path disclosure vulnerability in includes/timthumb.php src parameter. Solution Update the plugin...

WordPress JS Multi Hotel Plugin <= 2.2.1 - Remote File Inclusion

This plugins is prone to a remote file inclusion vulnerability via includes/showimage.php file parameter. Solution Update the plugin...

Wordpress plugin Joomlaskin JS Multi Hotel cross-site scripting vulnerability

WordPress is a blogging platform developed by WordPress Software Foundation using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Joomlaskin JS Multi Hotel plugin is a hotel management plugin. A cross-site scripting vulnerability in the Wordpress plug...

CVE-2014-100009

The Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 and earlier for WordPress allows remote attackers to obtain the installation path via a request to 1 functions.php, 2 myCalendar.php, 3 refreshDate.php, 4 showimage.php, 5 widget.php, 6 phpthumb/GdThumb.inc.php, or 7...

CVE-2014-100008

Cross-site scripting XSS vulnerability in includes/deleteimg.php in the Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the path parameter...

Path traversal

The Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 and earlier for WordPress allows remote attackers to obtain the installation path via a request to 1 functions.php, 2 myCalendar.php, 3 refreshDate.php, 4 showimage.php, 5 widget.php, 6 phpthumb/GdThumb.inc.php, or 7...

Cross site scripting

Cross-site scripting XSS vulnerability in includes/deleteimg.php in the Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the path parameter...

CVE-2014-100008

The CVE concerns the WordPress plugin JS Multi Hotel (aka JS MultiHotel/Js-Multi-Hotel) and its file includes/delete_img.php. The vulnerability is a cross-site scripting flaw (XSS) that allows remote attackers to inject arbitrary web script or HTML via the path parameter in versions up to 2.2.1 a...

CVE-2014-100009

The Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 and earlier for WordPress allows remote attackers to obtain the installation path via a request to 1 functions.php, 2 myCalendar.php, 3 refreshDate.php, 4 showimage.php, 5 widget.php, 6 phpthumb/GdThumb.inc.php, or 7...

WordPress JS Multi Hotel Plugin <= 2.2.1 - Multiple Vulnerabilities

Because of these vulnerabilities, the attackers can obtain the installation path via a request to widget.php, functions.php, myCalendar.php, showimage.php, refreshDate.php, phpthumb/thumbplugins/gdreflection.inc.php or phpthumb/GdThumb.inc.php in includes/. Solution Update the plugin...

WordPress JS Multi Hotel Plugin <= 2.2.1 - XSS

Because of this cross site scripting vulnerability in includes/deleteimg.php, the attackers can inject arbitrary web script or HTML via the "path" parameter. Solution Update the plugin...

Cross site scripting

Cross-site scripting XSS vulnerability in includes/refreshDate.php in the Joomlaskin JS Multi Hotel aka JS MultiHotel and Js-Multi-Hotel plugin 2.2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the roomid parameter...