CVE-2023-51315

Summary

CVE-2023-51315 represents a critical vulnerability in PHPJabbers Restaurant Booking System v3.0. This issue enables attackers to execute malicious scripts via Multiple Stored Cross-Site Scripting (XSS) attacks on the affected platform. Specifically, the vulnerability lies within the "seat_name," "plugin_sms_api_key," "plugin_sms_country_code," "title," and "name" parameters. An attacker can inject malicious code into these fields, which will be stored and subsequently executed on unsuspecting users' browsers when they view affected pages. This can lead to unauthorized access, data theft, or other malicious activities. It is highly recommended that users upgrade to the latest version of PHPJabbers Restaurant Booking System to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.