CVE-2023-51313

PHPJabbers Restaurant Booking System v3.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV fi...

CVE-2023-51338

CVE-2023-51338 affects PHPJabbers Meeting Room Booking System v1.0. The vulnerability is a Multiple Stored Cross-Site Scripting (XSS) in the index.php page, specifically in the title and name parameters. The root cause, per the packetstorm exploit details, is storing malicious scripts entered int...

PT-2025-7306 · Phpjabbers · Phpjabbers Shared Asset Booking System

Name of the Vulnerable Software and Affected Versions: PHPJabbers Shared Asset Booking System version 1.0 Description: The issue is related to a CSV injection vulnerability that allows an attacker to execute remote code. This vulnerability exists due to insufficient input validation in the...

CVE-2024-57427

PHPJabbers Cinema Booking System v2.0 is vulnerable to reflected cross-site scripting XSS. Multiple endpoints improperly handle user input, allowing malicious scripts to execute in a victim’s browser. Attackers can craft malicious links to steal session cookies or conduct phishing attacks...