Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
booking project booking vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-4251
A vulnerability was found in Movie Ticket Booking System and classified as problematic. Affected by this issue is some unknown functionality of the file editBooking.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disc...
Movie Ticket Booking System Project Movie Ticket Booking System -
6.1
CVSSv3
CVE-2020-15536
An issue exists in the bestsoftinc Hotel Booking System Pro plugin up to and including 1.1 for WordPress. Persistent XSS can occur via any of the registration fields.
Online Hotel Booking System Project Online Hotel Booking System
9.8
CVSSv3
CVE-2022-28115
Online Sports Complex Booking v1.0 exists to contain a SQL injection vulnerability via the id parameter.
Online Sports Complex Booking Project Online Sports Complex Booking 1.0
6.1
CVSSv3
CVE-2019-7554
An issue exists in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter.
Api Based Travel Booking Project Api Based Travel Booking 3.4.7
9.8
CVSSv3
CVE-2023-45012
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'user_email' parameter of the bus_info.php resource does not validate the characters received and they are sent unfiltered to the database.
Online Bus Booking System Project Online Bus Booking System 1.0
9.8
CVSSv3
CVE-2023-45015
Online Bus Booking System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'date' parameter of the bus_info.php resource does not validate the characters received and they are sent unfiltered to the database.
Online Bus Booking System Project Online Bus Booking System 1.0
6.1
CVSSv3
CVE-2020-25272
In SourceCodester Online Bus Booking System 1.0, there is XSS through the name parameter in book_now.php.
Online Bus Booking System Project Online Bus Booking System 1.0
1 Github repository
9.8
CVSSv3
CVE-2017-17595
Beauty Parlour Booking Script 1.0 has SQL Injection via the /list gender or city parameter.
Beauty Parlour Booking Script Project Beauty Parlour Booking Script 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-17604
Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter.
Entrepreneur Bus Booking Script Project Entrepreneur Bus Booking Script 3.0.4
1 EDB exploit
9.8
CVSSv3
CVE-2017-17609
Chartered Accountant Booking Script 1.0 has SQL Injection via the /service-list city parameter.
Chartered Accountant Booking Script Project Chartered Accountant Booking Script 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »