Lucene search
MitreCVE-2023-48836HistoryDec 07, 2023 - 7:15 a.m.
CVE-2023-48836
2023-12-0707:15:11
CWE-79
mitre
web.nvd.nist.gov
12
cve-2023-48836
car rental script 3.0
stored xss
vulnerability
security issue
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
13.1%
Car Rental Script 3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
Affected configurations
Node
phpjabberscar_rental_scriptMatch3.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpjabbers | car_rental_script | 3.0 | cpe:2.3:a:phpjabbers:car_rental_script:3.0:*:*:*:*:*:*:* |
Related
packetstorm
packetstorm
PHPJabbers Car Rental 3.0 Cross Site Scripting
2023-12-04 00:00:00
prion
prion
Cross site scripting
2023-12-07 07:15:00
cvelist
cvelist
CVE-2023-48836
2023-12-07 00:00:00
nvd
nvd
CVE-2023-48836
2023-12-07 07:15:11
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
13.1%
Related for CVE-2023-48836