Limo Booking Software
by Phpjabbers
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-4112 | 0.04 | — | 0.05 | Aug 3, 2023 | A vulnerability was found in PHP Jabbers Shuttle Booking Software 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The associated… | |||
| CVE-2023-48172 | 0.00 | — | 0.01 | Dec 7, 2023 | A Cross Site Scripting (XSS) vulnerability in Shuttle Booking Software 2.0 allows a remote attacker to inject JavaScript via the name, description, title, or address parameter to index.php. | |||
| CVE-2023-48830 | 0.00 | — | 0.01 | Dec 7, 2023 | Shuttle Booking Software 2.0 is vulnerable to CSV Injection in the Languages section via an export. | |||
| CVE-2023-43147 | 0.00 | — | 0.00 | Oct 12, 2023 | PHPJabbers Limo Booking Software 1.0 is vulnerable to Cross Site Request Forgery (CSRF) to add an admin user via the Add Users Function, aka an index.php?controller=pjAdminUsers&action=pjActionCreate URI. |
- CVE-2023-4112Aug 3, 2023risk 0.04cvss —epss 0.05
A vulnerability was found in PHP Jabbers Shuttle Booking Software 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The associated…
- CVE-2023-48172Dec 7, 2023risk 0.00cvss —epss 0.01
A Cross Site Scripting (XSS) vulnerability in Shuttle Booking Software 2.0 allows a remote attacker to inject JavaScript via the name, description, title, or address parameter to index.php.
- CVE-2023-48830Dec 7, 2023risk 0.00cvss —epss 0.01
Shuttle Booking Software 2.0 is vulnerable to CSV Injection in the Languages section via an export.
- CVE-2023-43147Oct 12, 2023risk 0.00cvss —epss 0.00
PHPJabbers Limo Booking Software 1.0 is vulnerable to Cross Site Request Forgery (CSRF) to add an admin user via the Add Users Function, aka an index.php?controller=pjAdminUsers&action=pjActionCreate URI.