CVE-2023-48172 | Shuttle Booking Software 2.0 index.php name/description/title/address cross site scripting (ID 175800)

Inserito da Angelo Barbosa | Dic 7, 2023 | CVE

A vulnerability classified as problematic has been found in Shuttle Booking Software 2.0. Affected is an unknown function of the file index.php. The manipulation of the argument name/description/title/address leads to cross site scripting.

This vulnerability is traded as CVE-2023-48172. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-48172 | Shuttle Booking Software 2.0 index.php name/description/title/address cross site scripting (ID 175800)

Post correlati

CVE-2024-39650 | WPWeb Elite WooCommerce PDF Vouchers Plugin up to 4.9.4 on WordPress authorization

CVE-2024-6608 | Mozilla Firefox up to 127.x IFRAME unknown vulnerability

CVE-2024-1330 | WP-FeedStats kadence-blocks-pro Plugin up to 2.3.7 on WordPress Shortcode access control

CVE-2024-4581 | Slider Revolution Plugin up to 6.7.11 on WordPress Add Layer class/id/title cross site scripting