This archive contains all of the 270 exploits added to Packet Storm in June, 2023.
b667fe4959950ca8858350be6182bc8b6116efd00b480bad1768dafe91e1ad51
GZ Multi Hotel Booking System version 1.8 suffers from a cross site scripting vulnerability.
fe020ffbd6df1cec59fc72645f8a3b07889f59788f64fdf7d930f7ae5c91b64b
GZ E Learning Platform version 1.8 suffers from a cross site scripting vulnerability.
f64de0b759c21ad615376decd3daa88b83ccdd6a5ba15b06631d4bef839553c1
CRM Platform version 1.8 suffers from a cross site scripting vulnerability.
62a955c5b319e7e27064e89b6039f0869a1d06d8c67561c5d8e361472b805999
GZ Forum Script version 1.8 suffers from a cross site scripting vulnerability.
6bd27c5c4cc8aba6c22ca8848237f65e5d3a7c37736b62e2af6f50ec42127f9c
GZ Hotel Booking Script version 1.8 suffers from a cross site scripting vulnerability.
1cd478a433cba3e46a0adfeb72aab5a6e5005b8265ce29fac01a68af2295ec14
Ticket Booking Script version 1.8 suffers from a cross site scripting vulnerability.
d4a21286a00b28b8cc18792f3d78fc014fd7834875a5875266815186b482f2a3
GZ Appointment Scheduling version 1.8 suffers from a cross site scripting vulnerability.
199d4e134ffc8bf451bf7d9a9a76e51f074673a986dd081a509653edf98f9898
Property Listing Script version 1.0 suffers from a cross site scripting vulnerability.
6fa8fcfd630a483d49fc934be31a1b423cb69fd07e2bc5e726c7ccb472df3c5d
Car Listing Script version 1.8 suffers from a cross site scripting vulnerability.
3ff9292c826e68cb45cbb3838b7388c5f15f34e41767703a0fb8b33482b3dc69
Vacation Rental Script version 1.8 suffers from a cross site scripting vulnerability.
bcef5d082440903d1bd980438a2033d074e3d04540736f2192b313a0acafd0d6
ApepBlack Premium Checker CMS version 3.0.5 suffers from a cross site scripting vulnerability.
10d48772704d524eccedb218cfcd017f45023ffbdd669d6e7e639106bb620c9c
Event Booking Calendar version 1.8 suffers from a cross site scripting vulnerability.
f9dcc1b5040698de5d1db39b437ba922a7e3a74e726595b99a6d8405bc6f7e73
Time Slot Booking Calendar version 1.8 suffers from a cross site scripting vulnerability.
f65b274470cdaa58905697b946bb0b36c4806f9c1a414f504b6f854b7f020005
Availability Booking Calendar version 1.8 suffers from reflective and persistent cross site scripting vulnerabilities.
6b6a0d70bb27a3b59acebfbe2c702803af91e1c7a747358e5b0f83d9a330076d
Anonymous Feedback Script version 2.1 suffers from a cross site scripting vulnerability.
cf172cb772c97dd864c17e8d4302be12ac0dbcd792bc50c2b08c6ca46c660ad6
AMSS++ version 4.2 appears to leave default credentials installed after installation.
7e4e4fb7cdf5e97793f8f1200312a7df651be029bb83f711b16261ac2c712bf7
NodCMS version 3.4.1 suffers from a cross site scripting vulnerability.
25e031f4ed9efb873c80f1dd576e76ecbf179a5bc982ab1d1221605e31d0ad27
Advanced Testimonials Manager version 5.5 suffers from an add administrator vulnerability.
0e33bc5d09ad0dcc4b6930a91ea71f69936a3737dbb4e38b4412194a26d88a68
Active Super Shop version 1.5.2 suffers from an html injection vulnerability.
0ddb94662a6db57cb52baa70e17bef8f93ff585403083476fa1a79092fa40a62
v8::internal::JSObject::SetAccessor does not check if the receiver is extensible before adding a new property. A potential attacker can exploit the ability to extend non-extensible objects to achieve arbitrary code execution inside the renderer process. Google Chrome version 113.0.5672.63 is affected.
5dea486a3e6ad9015ccd5bcf3a079867756de3fea0de37f9a81a4fdb0213817b
Google Chrome version 112.0.5615.137 and Chromium version 115.0.5737.0 suffer from a type confusion vulnerability in v8::internal::Object::SetPropertyWithAccessor.
ca1ae2932c65327ead4a64b612c744bc25a9a0ee96064ba953dcf011ba640f7e
NewsLetter Script version 2.4 suffers from a cross site scripting vulnerability.
eade9add78542b133899c291862a5dafb680af729a6902f9d5cf777a500283a1
Simple Forum version 2.7 suffers from a cross site scripting vulnerability.
6e02ef12ebffd325fe8f8889963a07e9c358164eff694ff8d5fcff4a609496a3
Simple Blog version 3.2 suffers from a cross site scripting vulnerability.
c97d8192845fc942626ac5b01d84f3c1910076ad36657a9c8f686537ec67166b