Skip to main content

Classroombookings

4 CVEs product

Monthly

CVE-2024-9807 MEDIUM POC This Month

A vulnerability was found in Craig Rodway Classroombookings 2.8.7 and classified as problematic. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Classroombookings
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.4%
CVE-2024-9806 MEDIUM POC This Month

A vulnerability has been found in Craig Rodway Classroombookings up to 2.8.6 and classified as problematic. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Classroombookings
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2023-23012 MEDIUM POC This Month

Cross Site Scripting (XSS) vulnerability in craigrodway classroombookings 2.6.4 allows attackers to execute arbitrary code or other unspecified impacts via the input bgcol in file Weeks.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP RCE XSS Classroombookings
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2020-35382 HIGH POC This Week

SQL Injection in Classbooking before 2.4.1 via the username field of a CSV file when adding a new user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Classroombookings
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
EPSS 0% CVSS 5.1
MEDIUM POC This Month

A vulnerability was found in Craig Rodway Classroombookings 2.8.7 and classified as problematic. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Classroombookings
NVD GitHub VulDB
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability has been found in Craig Rodway Classroombookings up to 2.8.6 and classified as problematic. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Classroombookings
NVD GitHub VulDB
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Cross Site Scripting (XSS) vulnerability in craigrodway classroombookings 2.6.4 allows attackers to execute arbitrary code or other unspecified impacts via the input bgcol in file Weeks.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP RCE XSS +1
NVD GitHub
EPSS 1% CVSS 7.2
HIGH POC This Week

SQL Injection in Classbooking before 2.4.1 via the username field of a CSV file when adding a new user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Classroombookings
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy