VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Single Theater Booking Script Project
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2017-12-28
CVE-2017-17941
SQL Injection vulnerability in Single Theater Booking Script Project Single Theater Booking Script 3.2.2
PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter.
network
low complexity
single-theater-booking-script-project
CWE-89
7.2
7.2
2017-12-28
CVE-2017-17940
Cross-site Scripting vulnerability in Single Theater Booking Script Project Single Theater Booking Script 3.2.2
PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php.
network
low complexity
single-theater-booking-script-project
CWE-79
4.8
4.8
2017-12-28
CVE-2017-17939
Cross-Site Request Forgery (CSRF) vulnerability in Single Theater Booking Script Project Single Theater Booking Script 3.2.2
PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php.
network
low complexity
single-theater-booking-script-project
CWE-352
8.8
8.8
2017-12-28
CVE-2017-17938
Cross-site Scripting vulnerability in Single Theater Booking Script Project Single Theater Booking Script 3.2.2
PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter.
network
low complexity
single-theater-booking-script-project
CWE-79
4.8
4.8
2017-12-13
CVE-2017-17634
SQL Injection vulnerability in Single Theater Booking Script Project Single Theater Booking Script 3.2.1
Single Theater Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.
network
low complexity
single-theater-booking-script-project
CWE-89
critical
9.8
9.8