RSS   Vulnerabilities for 'Car rental script'   RSS

2023-12-07
 
CVE-2023-48834

CWE-400
 
 
A lack of rate limiting in pjActionAjaxSend in Car Rental v3.0 allows attackers to cause resource exhaustion.

 
 
CVE-2023-48835

CWE-74
 
 
Car Rental Script v3.0 is vulnerable to CSV Injection via a Language > Labels > Export action.

 
 
CVE-2023-48836

CWE-79
 
 
Car Rental Script 3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.

 
 
CVE-2023-48837

CWE-79
 
 
Car Rental Script 3.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code.

 

 >>> Vendor: Phpjabbers 9 Products
Vacation rental script
Appointment scheduler
Event booking calendar
Rate me
Car rental script
Fundraising script
Time slots booking calendar
Availability booking calendar
Shuttle booking software

Copyright 2024, cxsecurity.com

 

Back to Top