3 matches found
PHPJabbers Fundraising Script v1.0 - Cross-Site Scripting
PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting XSS via the "action" parameter of index.php. id: CVE-2023-40751 info: name: PHPJabbers Fundraising Script v1.0 - Cross-Site Scripting author: ritikchaddha severity: medium description: | PHPJabbers Fundraising Script v1.0 is...
CVE-2023-40751
PHPJabbers Fundraising Script v1.0 is affected by Cross-Site Scripting (XSS) via the action parameter in index.php (CWE-79). The Nuclei template confirms unauthenticated attackers could inject malicious JavaScript, potentially stealing administrator credentials and manipulating donation campaigns...
CVE-2023-40751
PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting XSS via the "action" parameter of index.php...