CVE-2023-4112

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 3, 2023
Updated: May 17, 2024
CWE ID 352

Summary

CVE-2023-4112 is a newly identified vulnerability affecting the PHP Jabbers Shuttle Booking Software version 1.0. This issue, classified as problematic, impacts an unspecified part of the file /index.php. The vulnerability results in cross-site scripting, enabling remote attackers to inject malicious code into unsuspecting users' web browsers. Despite early disclosure, the vendor has not responded to mitigate this risk, leaving users potentially vulnerable to remote attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share