CVE-2023-51338

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 20, 2025

Updated: Feb 21, 2025

CWE ID 79

Summary

CVE-2023-51338: A critical vulnerability has been identified in the PHPJabbers Meeting Room Booking System version 1.0. The system is susceptible to multiple stored Cross-Site Scripting (XSS) attacks, which can be exploited by injecting malicious scripts into the "title" and "name" parameters of the index.php page. Successful exploitation may lead to unauthorized access, data theft, or other forms of unintended system behavior. It is recommended that users upgrade to the latest version of the software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t1zyQn
https://www.cve.org/CVERecord?id=CVE-2023-51338
https://nvd.nist.gov/vuln/detail/CVE-2023-51338

Back to Vulnerability Database

CVE-2023-51338

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations