Lucene search
K

14 matches found

Nuclei
Nuclei
added yesterday20 views

PHPJabbers Make an Offer Widget v1.0 - Cross-Site Scripting

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0. id: CVE-2023-40752 info: name: PHPJabbers Make an Offer Widget v1.0 - Cross-Site Scripting author: ritikchaddha severity: medium description: | There is a Cross Site...

6.1CVSS6.4AI score0.00974EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:30 p.m.7 views

CVE-2023-40752

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...

6.1CVSS5.9AI score0.00974EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-45305

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00974EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/08/28 1:15 p.m.4 views

CVE-2023-40767

User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS7.3AI score0.00746EPSS
Exploits0References4
OSV
OSV
added 2023/08/28 1:15 p.m.4 views

CVE-2023-40767

User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.8CVSS5.7AI score0.00746EPSS
Exploits0References2
NVD
NVD
added 2023/08/28 1:15 p.m.18 views

CVE-2023-40752

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...

6.1CVSS6AI score0.00974EPSS
Exploits0References2
Prion
Prion
added 2023/08/28 1:15 p.m.17 views

Cross site scripting

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...

5.8CVSS6AI score0.00974EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/28 12:0 a.m.19 views

CVE-2023-40767

User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

9.6AI score0.00746EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/28 12:0 a.m.12 views

CVE-2023-40767

User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...

7AI score0.00746EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/28 12:0 a.m.19 views

CVE-2023-40752

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...

6.2AI score0.00974EPSS
Exploits0References2
CVE
CVE
added 2023/08/28 12:0 a.m.55 views

CVE-2023-40752

PHPJabbers Make an Offer Widget v1.0 is affected by a Cross-Site Scripting (XSS) vulnerability in the action parameter of index.php. The issue, confirmed across multiple sources, allows unauthenticated input in the action parameter to be reflected in the page, with user interaction required. This...

6.1CVSS6AI score0.00974EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/08/28 12:0 a.m.38 views

CVE-2023-40767

CVE-2023-40767 affects PHPJabbers Make an Offer Widget v1.0. The issue is user enumeration during password recovery: messages differ between valid and invalid usernames, enabling brute-forcing with valid users. Base CVSS 3.1: 9.8 (Network, High impact on confidentiality, integrity, availability)....

9.8CVSS9.2AI score0.00746EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/28 12:0 a.m.12 views

CVE-2023-40752

There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0...

5.9AI score0.00974EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.7 views

PT-2023-27617 · Phpjabbers · Phpjabbers Make An Offer Widget

Name of the Vulnerable Software and Affected Versions: PHPJabbers Make an Offer Widget version 1.0 Description: There is a Cross Site Scripting XSS issue in the action parameter of the "index.php" file. This allows for potential malicious script execution. Recommendations: For PHPJabbers Make an...

6.1CVSS6AI score0.00974EPSS
Exploits0References7
Rows per page
Query Builder