Lucene search
HistoryJun 11, 2014 - 2:55 p.m.
CVE-2014-4035
cve
2014
4035
cross-site scripting
xss
vulnerability
booking_details.php
bsi
advance hotel booking system 2.0
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
57.5%
Cross-site scripting (XSS) vulnerability in booking_details.php in Best Soft Inc. (BSI) Advance Hotel Booking System 2.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
Affected configurations
Node
bestsoftincadvance_hotel_booking_systemMatch2.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| bestsoftinc:advance_hotel_booking_system | bestsoftinc advance hotel booking system | eq | 2.0 |
Related
packetstorm
packetstorm
BSI Advance Hotel Booking System 2.0 Cross Site Scripting
2019-08-12 00:00:00
prion
prion
Cross site scripting
2014-06-11 14:55:00
cvelist
cvelist
CVE-2014-4035
2014-06-11 14:00:00
exploitpack
exploitpack
zdt
zdt
nvd
nvd
CVE-2014-4035
2014-06-11 14:55:10
exploitdb
exploitdb
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
57.5%
Related for CVE-2014-4035