CVE-2023-51310

Medium CVSS: 4.3

A lack of rate limiting in the 'Forgot Password', 'Email Settings' feature of PHPJabbers Car Park Booking System v3.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.

Vendor

Phpjabbers

Product

Car Park Booking System

CWE

CWE-770

Yayın Tarihi

2025-02-20 15:15:12

Güncelleme

2025-11-04 19:16:17

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-770 Car Park Booking System MEDIUM Phpjabbers 2025

Referanslar

https://packetstorm.news/files/id/176492 https://www.phpjabbers.com/car-park-booking/#sectionDemo http://packetstormsecurity.com/files/176492/PHPJabbers-Car-Park-Booking-System-3.0-Missing-Rate-Limiting.html https://packetstorm.news/files/id/176492

Benzer Kayıtlar

Medium

CVE-2023-53927

PHPJabbers Simple CMS 5.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to in…

High

CVE-2023-53926

PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that allows remote attackers…

Critical

CVE-2023-53877

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickup_id parameter that allows attackers to ma…

Medium

CVE-2025-10827

A weakness has been identified in PHPJabbers Restaurant Menu Maker up to 1.1. Affected by this issue is some unknown fun…

Medium

CVE-2023-51295

PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name, plugin_sms_api_key, plugin…

Medium

CVE-2023-51328

PHPJabbers Cleaning Business Software v1.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "c_name, n…