PT-2023-27631 · Phpjabbers · Phpjabbers Ticket Support Script

Name of the Vulnerable Software and Affected Versions: PHPJabbers Ticket Support Script version 3.2 Description: The issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid...

CVE-2023-39776

A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file...