3 matches found
CVE-2023-40764
User enumeration is found in PHP Jabbers Car Rental Script v3.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...
CVE-2023-40764
CVE-2023-40764 affects PHP Jabbers Car Rental Script v3.0. The issue is a user-enumeration flaw in the password-recovery flow: differences in response messages reveal whether a username exists, enabling brute-force attempts with valid users. The CVSSv3.1 base score is high (9.8, Critical) with ne...
CVE-2023-40764
User enumeration is found in PHP Jabbers Car Rental Script v3.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...