Lucene search
K

38 matches found

NVD
NVD
added 2023/12/07 7:15 a.m.31 views

CVE-2023-48825

Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

5.4CVSS0.00453EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2023/12/07 7:15 a.m.3 views

CVE-2023-48828

Time Slots Booking Calendar 4.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the name, pluginsmsapikey, pluginsmscountrycode, calendarid, title, country name, or customername parameter...

5.4CVSS6AI score0.00465EPSS
Exploits2References3
Prion
Prion
added 2023/12/07 7:15 a.m.16 views

Input validation

Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

4.9CVSS7.3AI score0.00465EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2023/12/07 7:15 a.m.30 views

Input validation

Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

4.9CVSS7.5AI score0.00453EPSS
Exploits2References1Affected Software1
Prion
Prion
added 2023/12/07 7:15 a.m.22 views

Input validation

Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...

4.9CVSS7.3AI score0.00465EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/07 12:0 a.m.13 views

CVE-2023-48836

Car Rental Script 3.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the name, pluginsmsapikey, pluginsmscountrycode, calendarid, title, country name, or customername parameter...

5.7AI score0.00465EPSS
Exploits2References2
CVE
CVE
added 2023/12/07 12:0 a.m.49 views

CVE-2023-48825

CVE-2023-48825 affects PHPJabbers Availability Booking Calendar 5.0. The issue is multiple HTML (XSS) injections via the SMS API Key and Default Country Code fields in the SMS Settings panel, caused by insufficient input validation. Exploitation in the wild would allow an attacker to inject HTML/...

5.4CVSS5.9AI score0.00453EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2023/12/07 12:0 a.m.44 views

CVE-2023-48838

The CVE-2023-48838 entry concerns PHPJabbers Appointment Scheduler v3.0, with multiple HTML injection vulnerabilities triggered via the SMS API Key or Default Country Code. Root cause details indicate HTML injection (XSS) in the web interface, enabling an attacker to inject payloads through those...

5.4CVSS5.7AI score0.00465EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2023/12/07 12:0 a.m.36 views

CVE-2023-48838

Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code...

6AI score0.00465EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/12/07 12:0 a.m.31 views

CVE-2023-48825

Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

6.2AI score0.00453EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/12/07 12:0 a.m.33 views

CVE-2023-48837

Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code...

6AI score0.00465EPSS
Exploits2References2
vulnersOsv
vulnersOsv
added 2023/10/04 12:30 p.m.6 views

com.abavilla:fpi-bot-api (>=1.6.0 <=1.6.2), com.abavilla:fpi-bot-api-parent (>=1.6.0 <=1.6.2) +136 more potentially affected by CVE-2023-1584 via io.quarkus:quarkus-oidc (>=3.0.0.Alpha1 <=3.1.0.CR1)

io.quarkus:quarkus-oidc MAVEN version =3.0.0.Alpha1, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.0.25, =1.0.25, =1.5.0, =1.5.0, =1.3.1, =1.3.1, =1.3.4, =1.3.6 and more Source cves: CVE-2023-1584 Source advisory: OSV:GHSA-6HC9-CF8X-HF83...

7.5CVSS7.1AI score0.00963EPSS
Exploits0
OSV
OSV
added 2023/06/22 9:15 p.m.3 views

CVE-2023-30347

Cross Site Scripting XSS vulnerability in Neox Contact Center 2.3.9, via the serachsmsapiname parameter to the SMA API search...

4.8CVSS5.8AI score0.00495EPSS
Exploits1References1
Hacker One
Hacker One
added 2014/08/12 12:54 p.m.23 views

Mail.ru: money.mail.ru: Странное поведение SMS

Есть API для отправки SMS: POST /usr/sendsmscode HTTP/1.1 Host: money.mail.ru User-Agent: Mozilla/5.0 Macintosh; Intel Mac OS X 10.9; rv:28.0 Gecko/20100101 Firefox/28.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.38 views

JEEMA SMS 3.2 Joomla Component Multiple Vulnerabilities

No description provided by source. JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00 Attack Vector. Multiple...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2013/12/02 5:2 p.m.11 views

Google Nexus Phones Vulnerable to SMS Denial-of-Service

Google is reportedly looking into a problem with the latest versions of Nexus smartphones that could force the devices to restart, lock or fail to connect to the Internet. All Galaxy Nexus, Nexus 4 and Nexus 5 devices that run Android 4.0 contain a flaw that can render the phones vulnerable to a...

7AI score
Exploits0References6
exploitpack
exploitpack
added 2011/10/29 12:0 a.m.17 views

Joomla! Component com_jeemasms 3.2 - Multiple Vulnerabilities

Joomla! Component comjeemasms 3.2 - Multiple Vulnerabilities JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2011/10/29 12:0 a.m.41 views

Joomla! Component com_jeemasms 3.2 - Multiple Vulnerabilities

JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00 Attack Vector. Multiple Solution Status. unpublished CVE...

7.4AI score
Exploits0
Rows per page
Query Builder