Lucene search
K

52 matches found

Cvelist
Cvelist
added 2023/08/28 12:0 a.m.26 views

CVE-2023-40755

There is a Cross Site Scripting XSS vulnerability in the "theme" parameter of preview.php in PHPJabbers Callback Widget v1.0...

6.2AI score0.01202EPSS
Exploits0References2
CVE
CVE
added 2023/08/28 12:0 a.m.62 views

CVE-2023-40755

CVE-2023-40755 affects PHPJabbers Callback Widget v1.0, with an XSS vulnerability in the theme parameter of preview.php. The issue allows unauthenticated attackers to inject JavaScript through theme, potentially stealing administrator credentials or manipulating callback requests. The root cause ...

6.1CVSS6AI score0.01202EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/08/28 12:0 a.m.5 views

PHPJabbers Callback Widget 安全漏洞

PHPJabbers Callback Widget is a simple PHP script that places a discreet callback button on a website. A security vulnerability exists in version v1.0 of the PHPJabbers Callback Widget that stems from a user enumeration vulnerability when resetting a password...

9.8CVSS8.4AI score0.00746EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.6 views

PT-2023-27620 · Phpjabbers · Phpjabbers Callback Widget

Name of the Vulnerable Software and Affected Versions: PHPJabbers Callback Widget version 1.0 Description: There is a Cross Site Scripting XSS vulnerability in the theme parameter of the "preview.php" file. This issue allows for malicious script execution. Recommendations: For PHPJabbers Callback...

6.1CVSS6AI score0.01202EPSS
Exploits0References9
CVE
CVE
added 2023/08/28 12:0 a.m.26 views

CVE-2023-40756

PHPJabbers Callback Widget v1.0 is affected by a user-enumeration vulnerability during password recovery, where differing response messages may reveal whether a user exists, enabling brute-force attempts with valid accounts. The NVD lists CVSS 3.1 base score 9.8 (CRITICAL) with network attack vec...

9.8CVSS9.2AI score0.00746EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/08/10 5:15 p.m.33 views

CVE-2023-36314

There is a Cross Site Scripting XSS vulnerability in the value-text-osmsemailrequestmessage parameters of index.php in PHPJabbers Callback Widget v1.0...

6.1CVSS6AI score0.00388EPSS
Exploits0References2
OSV
OSV
added 2023/08/10 5:15 p.m.7 views

CVE-2023-36315

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0...

6.1CVSS5.8AI score0.00388EPSS
Exploits0References2
OSV
OSV
added 2023/08/10 5:15 p.m.5 views

CVE-2023-36314

There is a Cross Site Scripting XSS vulnerability in the value-text-osmsemailrequestmessage parameters of index.php in PHPJabbers Callback Widget v1.0...

6.1CVSS6.4AI score0.00388EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/08/10 5:15 p.m.4 views

CVE-2023-36314

There is a Cross Site Scripting XSS vulnerability in the value-text-osmsemailrequestmessage parameters of index.php in PHPJabbers Callback Widget v1.0...

6.1CVSS6.4AI score0.00388EPSS
Exploits0References4
NVD
NVD
added 2023/08/10 5:15 p.m.9 views

CVE-2023-36312

There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...

5.4CVSS5.3AI score0.00363EPSS
Exploits0References2
OSV
OSV
added 2023/08/10 5:15 p.m.2 views

CVE-2023-36312

There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...

5.4CVSS5.8AI score0.00363EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/08/10 5:15 p.m.4 views

CVE-2023-36312

There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...

5.4CVSS6.1AI score0.00363EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/08/10 5:15 p.m.5 views

CVE-2023-36315

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0...

6.1CVSS6.4AI score0.00388EPSS
Exploits0References4
NVD
NVD
added 2023/08/10 5:15 p.m.16 views

CVE-2023-36315

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0...

6.1CVSS6AI score0.00388EPSS
Exploits0References2
Prion
Prion
added 2023/08/10 5:15 p.m.16 views

Cross site scripting

There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...

4.9CVSS5.3AI score0.00363EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/08/10 5:15 p.m.16 views

Cross site scripting

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0...

5.8CVSS6AI score0.00388EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/08/10 5:15 p.m.21 views

Cross site scripting

There is a Cross Site Scripting XSS vulnerability in the value-text-osmsemailrequestmessage parameters of index.php in PHPJabbers Callback Widget v1.0...

5.8CVSS6AI score0.00388EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/10 12:0 a.m.15 views

CVE-2023-36315

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0...

5.9AI score0.00388EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/10 12:0 a.m.4 views

Callback Widget Cross-Site Scripting Vulnerability

PHPJabbers Callback Widget is a simple PHP script that places a discreet callback button on a website. A cross-site scripting vulnerability exists in PHPJabbers Callback Widget version v1.0, which stems from cross-site scripting XSS in the value-text-osmsemailrequestmessage parameter of ndex.php...

6.1CVSS6AI score0.00388EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/10 12:0 a.m.16 views

CVE-2023-36312

There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...

5.5AI score0.00363EPSS
Exploits0References2
Rows per page
Query Builder