Read Time:21 Second

Posted by Andrey Stoykov on Jul 25

# Exploit Title: Availability Booking Calendar PHP – Multiple Issues
# Date: 07/2023
# Exploit Author: Andrey Stoykov
# Tested on: Ubuntu 20.04
# Blog: http://msecureltd.blogspot.com

XSS #1:

Steps to Reproduce:

1. Browse to Bookings
2. Select All Bookings
3. Edit booking and select Promo Code
4. Enter payload TEST”><script>alert(`XSS`)</script>

// HTTP POST request

POST…

Read More

More Stories

suricata-7.0.8-1.el8

FEDORA-EPEL-2025-02e26b51d5 Packages in this update: suricata-7.0.8-1.el8 Update description: Various security, performance, accuracy, and stability issues have been fixed. Read More

suricata-7.0.8-1.fc40

FEDORA-2025-aa783e1cbd Packages in this update: suricata-7.0.8-1.fc40 Update description: Various security, performance, accuracy, and stability issues have been fixed. Read More

suricata-7.0.8-1.el9

FEDORA-EPEL-2025-9dfb7c8f88 Packages in this update: suricata-7.0.8-1.el9 Update description: Various security, performance, accuracy, and stability issues have been fixed. Read More

suricata-7.0.8-1.fc41

FEDORA-2025-e24171db6d Packages in this update: suricata-7.0.8-1.fc41 Update description: Various security, performance, accuracy, and stability issues have been fixed. Read More

rabbitmq-server-4.0.5-2.fc42

FEDORA-2025-7c46ce9b7d Packages in this update: rabbitmq-server-4.0.5-2.fc42 Update description: Automatic update for rabbitmq-server-4.0.5-2.fc42. Changelog * Thu Jan 2 2025 Richard W.M....