CVE-2023-4113

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Aug 3, 2023

Updated: May 17, 2024

CWE ID 290

Summary

CVE-2023-4113 is a newly identified vulnerability affecting the PHP Jabbers Service Booking Script version 1.0. The issue lies within the unspecified code of the /index.php file, resulting in a cross-site scripting (XSS) vulnerability. An attacker can exploit this remotely by manipulating argument indices, leading to the execution of malicious scripts in users' browsers. The vulnerability identifier is VDB-235960. Unfortunately, despite early disclosure, the vendor has yet to respond to address this security concern.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbpglJ
https://www.cve.org/CVERecord?id=CVE-2023-4113
https://nvd.nist.gov/vuln/detail/CVE-2023-4113

Back to Vulnerability Database

CVE-2023-4113

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations