Описание
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Shared Asset Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpjabbers:shared_asset_booking_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00148
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-290
Связанные уязвимости
CVSS3: 6.5
github
12 месяцев назад
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Shared Asset Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.
EPSS
Процентиль: 36%
0.00148
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-290