Phpjabbers

Bus Reservation System

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-53877

Exploit
  • EPSS 0.05%
  • Veröffentlicht 15.12.2025 20:28:17
  • Zuletzt bearbeitet 18.12.2025 22:36:03

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickup_id parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to stea...

5.4

CVE-2023-51318

Exploit
  • EPSS 0.17%
  • Veröffentlicht 20.02.2025 16:15:34
  • Zuletzt bearbeitet 04.11.2025 19:16:18

PHPJabbers Bus Reservation System v1.1 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "title, name" parameters.

8.8

CVE-2023-51319

Exploit
  • EPSS 0.28%
  • Veröffentlicht 20.02.2025 16:15:34
  • Zuletzt bearbeitet 04.11.2025 19:16:18

PHPJabbers Bus Reservation System v1.1 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in Sys...

7.5

CVE-2023-51316

Exploit
  • EPSS 0.35%
  • Veröffentlicht 20.02.2025 15:15:12
  • Zuletzt bearbeitet 04.11.2025 19:16:17

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Bus Reservation System v1.1 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of genera...

6.1

CVE-2023-4111

Exploit
  • EPSS 18.89%
  • Veröffentlicht 03.08.2023 04:15:10
  • Zuletzt bearbeitet 21.11.2024 08:34:25

A vulnerability was found in PHP Jabbers Bus Reservation System 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument index/pickup_id leads to cross site scrip...