38 matches found
CVE-2023-48825
Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...
CVE-2023-48828
Time Slots Booking Calendar 4.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the name, pluginsmsapikey, pluginsmscountrycode, calendarid, title, country name, or customername parameter...
Input validation
Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...
Input validation
Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...
Input validation
Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...
CVE-2023-48836
Car Rental Script 3.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the name, pluginsmsapikey, pluginsmscountrycode, calendarid, title, country name, or customername parameter...
CVE-2023-48825
CVE-2023-48825 affects PHPJabbers Availability Booking Calendar 5.0. The issue is multiple HTML (XSS) injections via the SMS API Key and Default Country Code fields in the SMS Settings panel, caused by insufficient input validation. Exploitation in the wild would allow an attacker to inject HTML/...
CVE-2023-48838
The CVE-2023-48838 entry concerns PHPJabbers Appointment Scheduler v3.0, with multiple HTML injection vulnerabilities triggered via the SMS API Key or Default Country Code. Root cause details indicate HTML injection (XSS) in the web interface, enabling an attacker to inject payloads through those...
CVE-2023-48838
Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...
CVE-2023-48825
Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...
CVE-2023-48837
Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...
com.abavilla:fpi-bot-api (>=1.6.0 <=1.6.2), com.abavilla:fpi-bot-api-parent (>=1.6.0 <=1.6.2) +136 more potentially affected by CVE-2023-1584 via io.quarkus:quarkus-oidc (>=3.0.0.Alpha1 <=3.1.0.CR1)
io.quarkus:quarkus-oidc MAVEN version =3.0.0.Alpha1, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.0.25, =1.0.25, =1.5.0, =1.5.0, =1.3.1, =1.3.1, =1.3.4, =1.3.6 and more Source cves: CVE-2023-1584 Source advisory: OSV:GHSA-6HC9-CF8X-HF83...
CVE-2023-30347
Cross Site Scripting XSS vulnerability in Neox Contact Center 2.3.9, via the serachsmsapiname parameter to the SMA API search...
Mail.ru: money.mail.ru: Странное поведение SMS
Есть API для отправки SMS: POST /usr/sendsmscode HTTP/1.1 Host: money.mail.ru User-Agent: Mozilla/5.0 Macintosh; Intel Mac OS X 10.9; rv:28.0 Gecko/20100101 Firefox/28.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3...
JEEMA SMS 3.2 Joomla Component Multiple Vulnerabilities
No description provided by source. JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00 Attack Vector. Multiple...
Google Nexus Phones Vulnerable to SMS Denial-of-Service
Google is reportedly looking into a problem with the latest versions of Nexus smartphones that could force the devices to restart, lock or fail to connect to the Internet. All Galaxy Nexus, Nexus 4 and Nexus 5 devices that run Android 4.0 contain a flaw that can render the phones vulnerable to a...
Joomla! Component com_jeemasms 3.2 - Multiple Vulnerabilities
Joomla! Component comjeemasms 3.2 - Multiple Vulnerabilities JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00...
Joomla! Component com_jeemasms 3.2 - Multiple Vulnerabilities
JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00 Attack Vector. Multiple Solution Status. unpublished CVE...