CVE-2023-48836 | PHP Jabbers Car Rental Script 3.0 cross site scripting

Posted by Angelo Barbosa | Dec 7, 2023 | CVE

A vulnerability, which was classified as problematic, was found in PHP Jabbers Car Rental Script 3.0. Affected is an unknown function. The manipulation of the argument name/plugin_sms_api_key/plugin_sms_country_code/calendar_id/title/country name/customer_name leads to cross site scripting.

This vulnerability is traded as CVE-2023-48836. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-48836 | PHP Jabbers Car Rental Script 3.0 cross site scripting

Related Posts

CVE-2024-7112 | Pinpoint Booking System Plugin up to 2.9.9.5.0 on WordPress sql injection

CVE-2024-35165 | Gutenify Plugin up to 1.4.0 on WordPress information disclosure

CVE-2024-25567 | Delta Electronics DIAEnergie prior 1.10.00.005 path traversal (icsa-24-074-12)

CVE-2022-29966 | Emerson Ovation up to 3.8.0 FP1 missing authentication (icsa-24-158-02)