Yacht Listing Script Security Vulnerabilities and Issues — Yacht Listing Script CVE List

Lucene search

PhpjabbersYacht Listing Script

3 matches found

CVE•added 2023/08/28 1:15 p.m.•30 views

CVE-2023-40750

There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0.

6.1CVSS6AI score0.01572EPSS

CVE•added 2023/08/10 3:15 p.m.•21 views

CVE-2023-38830

An information leak in PHPJabbers Yacht Listing Script v1.0 allows attackers to export clients' credit card numbers from the Reservations module.

7.5CVSS7.2AI score0.00068EPSS

CVE•added 2023/08/28 1:15 p.m.•21 views

CVE-2023-40761

User enumeration is found in PHPJabbers Yacht Listing Script v2.0. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.

9.8CVSS9.2AI score0.00098EPSS