Описание
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Event Ticketing System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpjabbers:event_ticketing_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00192
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-770
Связанные уязвимости
CVSS3: 6.5
github
12 месяцев назад
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Event Ticketing System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.
EPSS
Процентиль: 41%
0.00192
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-770