CVE-2023-4113

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Aug 3, 2023
Updated: May 17, 2024
CWE ID 290

Summary

CVE-2023-4113 is a newly identified vulnerability affecting the PHP Jabbers Service Booking Script version 1.0. The issue lies within the unspecified code of the /index.php file, resulting in a cross-site scripting (XSS) vulnerability. An attacker can exploit this remotely by manipulating argument indices, leading to the execution of malicious scripts in users' browsers. The vulnerability identifier is VDB-235960. Unfortunately, despite early disclosure, the vendor has yet to respond to address this security concern.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share