Phpjabbers Bus Reservation System — known CVE vulnerabilities
Every CVE whose affected-product data names Phpjabbers Bus Reservation System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-53877 — CVSS 9.8 (critical): Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickup_id parameter that allows attackers to manipulate database…
CVE-2023-51319 — CVSS 8.8 (high): PHPJabbers Bus Reservation System v1.1 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The…
CVE-2023-51316 — CVSS 7.5 (high): A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Bus Reservation System v1.1 allows attackers to send an excessive…
CVE-2023-51318 — CVSS 5.4 (medium): PHPJabbers Bus Reservation System v1.1 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "title, name" parameters.
CVE-2023-4111 — CVSS 4.3 (medium): A vulnerability was found in PHP Jabbers Bus Reservation System 1.1 and classified as problematic. Affected by this issue is some unknown…