bugsbd

1 exploit Active since Dec 2023
CVE-2023-48172 WRITEUP MEDIUM WRITEUP
Shuttle Booking Software 2.0 - Cross-Site Scripting via Name, Description, Title, or Address Parameter
A Cross Site Scripting (XSS) vulnerability in Shuttle Booking Software 2.0 allows a remote attacker to inject JavaScript via the name, description, title, or address parameter to index.php.
CVSS 5.4