Vulnerabilities > Phpjabbers

DATE CVE VULNERABILITY TITLE RISK
2023-08-03 CVE-2023-4113 Cross-site Scripting vulnerability in PHPjabbers Service Booking Script 1.0
A vulnerability was found in PHP Jabbers Service Booking Script 1.0.
network
low complexity
phpjabbers CWE-79
6.1
2023-08-03 CVE-2023-4111 Cross-site Scripting vulnerability in PHPjabbers BUS Reservation System 1.1
A vulnerability was found in PHP Jabbers Bus Reservation System 1.1 and classified as problematic.
network
low complexity
phpjabbers CWE-79
6.1
2023-08-03 CVE-2023-4110 Unspecified vulnerability in PHPjabbers Availability Booking Calendar 5.0
A vulnerability has been found in PHP Jabbers Availability Booking Calendar 5.0 and classified as problematic.
network
low complexity
phpjabbers
6.1
2023-08-01 CVE-2023-33560 Cross-site Scripting vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
There is a Cross Site Scripting (XSS) vulnerability in "cid" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3.
network
low complexity
phpjabbers CWE-79
6.1
2023-08-01 CVE-2023-33561 Unspecified vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords.
network
low complexity
phpjabbers
critical
9.8
2023-08-01 CVE-2023-33562 Unspecified vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
User enumeration is found in in PHP Jabbers Time Slots Booking Calendar v3.3.
network
low complexity
phpjabbers
critical
9.8
2023-08-01 CVE-2023-33563 Improper Authentication vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
In PHP Jabbers Time Slots Booking Calendar 3.3 , lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts.
network
low complexity
phpjabbers CWE-287
8.8
2023-08-01 CVE-2023-33564 Cross-site Scripting vulnerability in PHPjabbers Time Slots Booking Calendar 3.3
There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3.
network
low complexity
phpjabbers CWE-79
6.1
2023-08-01 CVE-2023-34869 Cross-site Scripting vulnerability in PHPjabbers Catering System 1.0
PHPJabbers Catering System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /index.php?controller=pjAdmin&action=pjActionForgot.
network
low complexity
phpjabbers CWE-79
6.1
2021-11-05 CVE-2020-22222 Cross-site Scripting vulnerability in PHPjabbers Fundraising Script 1.0
Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionLoadCss function.
network
low complexity
phpjabbers CWE-79
6.1