CVE-2023-51316

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 20, 2025

Updated: Feb 21, 2025

CWE ID 400

Summary

CVE-2023-51316 refers to a vulnerability in the 'Forgot Password' feature of PHPJabbers Bus Reservation System v1.1. This issue stems from an absence of rate limiting, enabling attackers to submit an unprecedented volume of email requests on behalf of a legitimate user. Consequently, the system may become overwhelmed by the deluge of generated e-mail messages, resulting in a potential Denial of Service (DoS) attack.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Phpjabbers Bus Reservation System

Affected Vendors

PHPJabbers

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t1zYDp
https://www.cve.org/CVERecord?id=CVE-2023-51316
https://nvd.nist.gov/vuln/detail/CVE-2023-51316

Back to Vulnerability Database