Callback Widget Security Vulnerabilities and Issues — Callback Widget CVE List

Lucene search

PhpjabbersCallback Widget

5 matches found

CVE•added 2023/08/28 1:15 p.m.•33 views

CVE-2023-40755

There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Callback Widget v1.0.

6.1CVSS6AI score0.01415EPSS

CVE•added 2023/08/10 5:15 p.m.•25 views

CVE-2023-36312

There is a Cross Site Scripting (XSS) vulnerability in the value-enum-o_bf_include_timezone parameter of index.php in PHPJabbers Callback Widget v1.0.

5.4CVSS5.3AI score0.00084EPSS

CVE•added 2023/08/10 5:15 p.m.•25 views

CVE-2023-36314

There is a Cross Site Scripting (XSS) vulnerability in the value-text-o_sms_email_request_message parameters of index.php in PHPJabbers Callback Widget v1.0.

6.1CVSS6AI score0.0009EPSS

CVE•added 2023/08/10 5:15 p.m.•21 views

CVE-2023-36315

There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0.

6.1CVSS6AI score0.0009EPSS

CVE•added 2023/08/28 1:15 p.m.•16 views

CVE-2023-40756

User enumeration is found in PHPJabbers Callback Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.

9.8CVSS9.2AI score0.00098EPSS