Vulnerabilities > Phpjabbers > Availability Booking Calendar > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-07	CVE-2023-48207	Improper Neutralization of Formula Elements in a CSV File vulnerability in PHPjabbers Availability Booking Calendar 5.0 Availability Booking Calendar 5.0 allows CSV injection via the unique ID field in the Reservations list component. network low complexity phpjabbers CWE-1236	8.8
2023-12-07	CVE-2023-48831	Resource Exhaustion vulnerability in PHPjabbers Availability Booking Calendar 5.0 A lack of rate limiting in pjActionAJaxSend in Availability Booking Calendar 5.0 allows attackers to cause resource exhaustion. network low complexity phpjabbers CWE-400	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.