Ticket Support Script Security Vulnerabilities and Issues — Ticket Support Script CVE List

Lucene search

PhpjabbersTicket Support Script

3 matches found

CVE•added 2023/08/28 1:15 p.m.•36 views

CVE-2023-40753

There is a Cross Site Scripting (XSS) vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2.

5.4CVSS5.3AI score0.01035EPSS

CVE•added 2023/08/10 3:15 p.m.•26 views

CVE-2023-39776

A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file.

9.8CVSS9.4AI score0.00115EPSS

CVE•added 2023/08/28 1:15 p.m.•20 views

CVE-2023-40766

User enumeration is found in in PHPJabbers Ticket Support Script v3.2. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.

9.8CVSS9.2AI score0.00107EPSS