6.5

CVE-2023-51321

Exploit

EPSS 0.36%
Veröffentlicht 20.02.2025 16:15:35
Zuletzt bearbeitet 04.11.2025 19:16:18
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Night Club Booking Software v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Phpjabbers ≫ Night Club Booking Software Version1.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.36%	0.275

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	6.5	3.9	2.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-290 Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

https://www.phpjabbers.com/night-club-booking-software/#sectionDemo

Product

https://packetstorm.news/files/id/176502

Third Party Advisory

Exploit

VDB Entry

http://packetstormsecurity.com/files/176502/PHPJabbers-Night-Club-Booking-Software-1.0-Missing-Rate-Limiting.html

https://nvd.nist.gov/vuln/detail/CVE-2023-51321

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-51321

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-51321

EUVD