Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
booking project booking vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2017-17938
PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter.
Single Theater Booking Script Project Single Theater Booking Script 3.2.2
6.8
CVSSv2
CVE-2017-17939
PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php.
Single Theater Booking Script Project Single Theater Booking Script 3.2.2
3.5
CVSSv2
CVE-2017-17940
PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php.
Single Theater Booking Script Project Single Theater Booking Script 3.2.2
6.5
CVSSv2
CVE-2017-17941
PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter.
Single Theater Booking Script Project Single Theater Booking Script 3.2.2
7.5
CVSSv2
CVE-2022-28115
Online Sports Complex Booking v1.0 exists to contain a SQL injection vulnerability via the id parameter.
Online Sports Complex Booking Project Online Sports Complex Booking 1.0
7.5
CVSSv2
CVE-2020-25273
In SourceCodester Online Bus Booking System 1.0, there is Authentication bypass on the Admin Login screen in admin.php via username or password SQL injection.
Online Bus Booking System Project Online Bus Booking System 1.0
1 Github repository
4.3
CVSSv2
CVE-2019-7554
An issue exists in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter.
Api Based Travel Booking Project Api Based Travel Booking 3.4.7
4.3
CVSSv2
CVE-2020-25272
In SourceCodester Online Bus Booking System 1.0, there is XSS through the name parameter in book_now.php.
Online Bus Booking System Project Online Bus Booking System 1.0
1 Github repository
7.5
CVSSv2
CVE-2017-17595
Beauty Parlour Booking Script 1.0 has SQL Injection via the /list gender or city parameter.
Beauty Parlour Booking Script Project Beauty Parlour Booking Script 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2017-17604
Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter.
Entrepreneur Bus Booking Script Project Entrepreneur Bus Booking Script 3.0.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »