Vulnerabilities > CVE-2023-38830 - Exposure of Resource to Wrong Sphere vulnerability in PHPjabbers Yacht Listing Script 1.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
phpjabbers
CWE-668
NVD
Published: 2023-08-10
Updated: 2023-11-07

Summary

An information leak in PHPJabbers Yacht Listing Script v1.0 allows attackers to export clients' credit card numbers from the Reservations module.

Vulnerable Configurations

Part Description Count
Application
Phpjabbers
1

Common Weakness Enumeration (CWE)

References