Lucene search
MitreCVE-2023-48830HistoryDec 07, 2023 - 7:15 a.m.
CVE-2023-48830
2023-12-0707:15:11
CWE-74
mitre
web.nvd.nist.gov
14
cve-2023-48830
shuttle booking software 2.0
csv injection
languages section
export
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0.001
Percentile
24.9%
Shuttle Booking Software 2.0 is vulnerable to CSV Injection in the Languages section via an export.
Affected configurations
Node
phpjabbersshuttle_booking_softwareMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpjabbers | shuttle_booking_software | 2.0 | cpe:2.3:a:phpjabbers:shuttle_booking_software:2.0:*:*:*:*:*:*:* |
Related
prion
prion
Input validation
2023-12-07 07:15:00
cvelist
cvelist
CVE-2023-48830
2023-12-07 00:00:00
nvd
nvd
CVE-2023-48830
2023-12-07 07:15:11
packetstorm
packetstorm
PHPJabbers Shuttle Booking Software 2.0 CSV Injection
2023-12-04 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.7
Confidence
High
EPSS
0.001
Percentile
24.9%
Related for CVE-2023-48830