Vulnerabilities > Phpjabbers > Time Slots Booking Calendar > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-48827 Cross-site Scripting vulnerability in PHPjabbers Time Slots Booking Calendar 4.0
Time Slots Booking Calendar 4.0 is vulnerable to Multiple HTML Injection issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
network
low complexity
phpjabbers CWE-79
5.4
5.4
2023-12-07 CVE-2023-48828 Cross-site Scripting vulnerability in PHPjabbers Time Slots Booking Calendar 4.0
Time Slots Booking Calendar 4.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
network
low complexity
phpjabbers CWE-79
5.4
5.4
2023-08-01 CVE-2023-33560 Cross-site Scripting vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
There is a Cross Site Scripting (XSS) vulnerability in "cid" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3.
network
low complexity
phpjabbers CWE-79
6.1
6.1
2023-08-01 CVE-2023-33564 Cross-site Scripting vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3.
network
low complexity
phpjabbers CWE-79
6.1
6.1