CVE-2018-5074
https://notcve.org/view.php?id=CVE-2018-5074
Online Ticket Booking has XSS via the admin/manageownerlist.php contact parameter. Online Ticket Booking tiene Cross-Site Scripting (XSS) mediante el parámetro contact en admin/manageownerlist.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/Advanced%20Real%20Estate%20Script.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-5073
https://notcve.org/view.php?id=CVE-2018-5073
Online Ticket Booking has CSRF via admin/movieedit.php. Online Ticket Booking tiene Cross-Site Request Forgery (CSRF) en admin/movieedit.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/Advanced%20Real%20Estate%20Script.md • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2018-5076
https://notcve.org/view.php?id=CVE-2018-5076
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter. Online Ticket Booking tiene Cross-Site Scripting (XSS) mediante el parámetro newstitle en admin/newsedit.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/Advanced%20Real%20Estate%20Script.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-5075
https://notcve.org/view.php?id=CVE-2018-5075
Online Ticket Booking has XSS via the admin/snacks_edit.php snacks_name parameter. Online Ticket Booking tiene Cross-Site Scripting (XSS) mediante el parámetro snacks_name en admin/snacks_edit.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/Advanced%20Real%20Estate%20Script.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-5078
https://notcve.org/view.php?id=CVE-2018-5078
Online Ticket Booking has XSS via the admin/eventlist.php cast parameter. Online Ticket Booking tiene Cross-Site Scripting (XSS) mediante el parámetro cast en admin/eventlist.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/Advanced%20Real%20Estate%20Script.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •