A vulnerability, which was classified as problematic, has been found in PHP Jabbers Time Slots Booking Calendar 4.0. This issue affects some unknown processing. The manipulation of the argument name/plugin_sms_api_key/plugin_sms_country_code/calendar_id/title/country name/customer_name leads to cross site scripting.

The identification of this vulnerability is CVE-2023-48828. The attack may be initiated remotely. There is no exploit available.