VYPR

Online Event Booking and Reservation System

by Sourcecodester

CVEs (3)

  • CVE-2021-42667Nov 5, 2021
    risk 0.06cvss epss 0.16

    A SQL Injection vulnerability exists in Sourcecodester Online Event Booking and Reservation System in PHP in event-management/views. An attacker can leverage this vulnerability in order to manipulate the sql query performed. As a result he can extract sensitive data from the web…

  • CVE-2021-42663Nov 5, 2021
    risk 0.03cvss epss 0.04

    An HTML injection vulnerability exists in Sourcecodester Online Event Booking and Reservation System in PHP/MySQL via the msg parameter to /event-management/index.php. An attacker can leverage this vulnerability in order to change the visibility of the website. Once the target…

  • CVE-2021-42662Nov 5, 2021
    risk 0.00cvss epss 0.02

    A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Online Event Booking and Reservation System in PHP/MySQL via the Holiday reason parameter. An attacker can leverage this vulnerability in order to run javascript commands on the web server surfers behalf,…