Show filters
135 Total Results
Displaying 111-120 of 135
Sort by:
Attacker Value
Unknown
CVE-2018-15191
Disclosure Date: August 10, 2018 (last updated November 27, 2024)
PHP Scripts Mall hotel-booking-script 2.0.4 allows remote attackers to cause a denial of service via crafted JavaScript code in the First Name, Last Name, or Address field.
0
Attacker Value
Unknown
CVE-2018-15190
Disclosure Date: August 10, 2018 (last updated November 27, 2024)
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
0
Attacker Value
Unknown
CVE-2018-6372
Disclosure Date: February 17, 2018 (last updated November 26, 2024)
SQL Injection exists in the JB Bus 2.3 component for Joomla! via the order_number parameter.
0
Attacker Value
Unknown
CVE-2018-6891
Disclosure Date: February 11, 2018 (last updated November 26, 2024)
Bookly #1 WordPress Booking Plugin Lite before 14.5 has XSS via a jQuery.ajax request to ng-payment_details_dialog.js.
0
Attacker Value
Unknown
CVE-2018-5672
Disclosure Date: January 13, 2018 (last updated November 26, 2024)
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php form_field5[label] parameter.
0
Attacker Value
Unknown
CVE-2018-5671
Disclosure Date: January 13, 2018 (last updated November 26, 2024)
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php extra_field1[items][field_item1][price_percent] parameter.
0
Attacker Value
Unknown
CVE-2018-5673
Disclosure Date: January 13, 2018 (last updated November 26, 2024)
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. CSRF exists via wp-admin/admin.php.
0
Attacker Value
Unknown
CVE-2018-5670
Disclosure Date: January 13, 2018 (last updated November 26, 2024)
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php sale_conditions[count][] parameter.
0
Attacker Value
Unknown
CVE-2017-17939
Disclosure Date: December 28, 2017 (last updated November 26, 2024)
PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php.
0
Attacker Value
Unknown
CVE-2017-17938
Disclosure Date: December 28, 2017 (last updated November 26, 2024)
PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter.
0
