Phpjabbers - Appointment Scheduler CVE

Filtered by vendor Phpjabbers Subscribe

Filtered by product Appointment Scheduler

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-48838	1 Phpjabbers	1 Appointment Scheduler	2023-12-09	N/A	5.4 MEDIUM
Appointment Scheduler 3.0 is vulnerable to Multiple HTML Injection issues via the SMS API Key or Default Country Code.
CVE-2023-48839	1 Phpjabbers	1 Appointment Scheduler	2023-12-09	N/A	5.4 MEDIUM
Appointment Scheduler 3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.

Vulnerabilities (CVE)