Loading HuntDB...

GHSA-v75c-m7vr-mvvg

GitHub Security Advisory

⚠ Unreviewed MODERATE Has CVE

Advisory Details

A vulnerability classified as problematic has been found in GZ Scripts Event Booking Calendar 1.8. Affected is an unknown function of the file /load.php. The manipulation of the argument first_name/second_name/phone/address_1/country leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-233352. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Related CVEs

Key Information

GHSA ID
GHSA-v75c-m7vr-mvvg
Published
July 10, 2023 6:30 PM
Last Modified
July 10, 2023 6:30 PM
CVSS Score
5.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: July 31, 2025 6:36 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.