Vulnerabilities (CVE)

Filtered by vendor Phpjabbers Subscribe

Filtered by product Time Slots Booking Calendar

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-48828	1 Phpjabbers	1 Time Slots Booking Calendar	2023-12-09	N/A	5.4 MEDIUM
Time Slots Booking Calendar 4.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
CVE-2023-48827	1 Phpjabbers	1 Time Slots Booking Calendar	2023-12-09	N/A	5.4 MEDIUM
Time Slots Booking Calendar 4.0 is vulnerable to Multiple HTML Injection issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
CVE-2023-33560	1 Phpjabbers	1 Time Slots Booking Calendar	2023-08-04	N/A	6.1 MEDIUM
There is a Cross Site Scripting (XSS) vulnerability in "cid" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3.
CVE-2023-33564	1 Phpjabbers	1 Time Slots Booking Calendar	2023-08-04	N/A	6.1 MEDIUM
There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3.