Lucene search
K

7 matches found

NVD
NVD
added 2023/12/07 7:15 a.m.11 views

CVE-2023-48826

Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection via the unique ID field of the Reservations List...

8.8CVSS0.01201EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2023/12/07 7:15 a.m.3 views

CVE-2023-48826

Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection via the unique ID field of the Reservations List...

8.8CVSS7.3AI score0.01201EPSS
Exploits2References3
NVD
NVD
added 2023/12/07 7:15 a.m.41 views

CVE-2023-48207

Availability Booking Calendar 5.0 allows CSV injection via the unique ID field in the Reservations list component...

8.8CVSS0.01166EPSS
Exploits3References1
OSV
OSV
added 2023/12/07 7:15 a.m.4 views

CVE-2023-48207

Availability Booking Calendar 5.0 allows CSV injection via the unique ID field in the Reservations list component...

8.8CVSS5.8AI score0.01166EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2023/12/04 12:0 a.m.468 views

PHPJabbers Shuttle Booking Software 2.0 CSV Injection

Exploit Title: PHPJabbers Shuttle Booking Software v2.0 - CSV Injection Date: 19/11/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/shuttle-booking-software/ Version: v2.0 Tested on: Windows 10...

7.4AI score0.01201EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/11/20 12:0 a.m.386 views

PHPJabbers Availability Booking Calendar 5.0 CSV Injection

Exploit Title: PHPJabbers Availability Booking Calendar v5.0 - CSV Injection Date: 12/11/2023 Exploit Author: BugsBD Security Researcher Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/availability-booking-calendar/sectionDemo Version: v5.0...

7.5AI score0.01166EPSS
Exploits3
ATTACKERKB
ATTACKERKB
added 2022/02/16 10:15 p.m.6 views

CVE-2022-24983

Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to any uploaded file by capturing the POST response. When chained with CVE-2022-24984, this could lead to unauthenticated remote code execution on the underlying web server. This occurs because the Unique...

9.8CVSS6.4AI score0.02707EPSS
Exploits0References4
Rows per page
Query Builder