CVE-2023-51315

Опубликовано: 20 фев. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

PHPJabbers Restaurant Booking System v3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "seat_name, plugin_sms_api_key, plugin_sms_country_code, title, name" parameters.

Ссылки

https://packetstorm.news/files/id/176493
Exploit
Third Party Advisory
VDB Entry
https://www.phpjabbers.com/restaurant-booking-system/#sectionDemo
Product
http://packetstormsecurity.com/files/176493/PHPJabbers-Restaurant-Booking-System-3.0-Cross-Site-Scripting-HTML-Injection.html
https://packetstorm.news/files/id/176493
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpjabbers:restaurant_booking_system:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 39%

0.00172

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-93jg-3qrg-49hq