Phpjabbers Cleaning_business_software
9 CVEs affecting Phpjabbers Cleaning_business_software. Latest disclosed: 2025-05-08. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-36140 | Critical | 9.8 | 2023-09-11 | In PHPJabbers Cleaning Business Software 1.0, there is no encryption on user passwords allowing an attacker to gain access to all user accounts. |
CVE-2023-36139 | Critical | 9.8 | 2023-08-04 | In PHPJabbers Cleaning Business Software 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers… |
CVE-2023-51331 | Medium | 6.5 | 2025-02-20 | PHPJabbers Cleaning Business Software v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exis… |
CVE-2023-51327 | Medium | 6.5 | 2025-02-20 | A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cleaning Business Software v1.0 allows attackers to send an excessive amount of email fo… |
CVE-2023-51326 | Medium | 6.5 | 2025-02-20 | A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cleaning Business Software v1.0 allows attackers to send an excessive amount of email fo… |
CVE-2023-36138 | Medium | 6.1 | 2023-08-04 | PHPJabbers Cleaning Business Software 1.0 is vulnerable to Cross Site Scripting (XSS) via the theme parameter of preview.php. |
CVE-2023-51328 | Medium | 5.4 | 2025-05-08 | PHPJabbers Cleaning Business Software v1.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) in the "c_name, name" parameters. |
CVE-2023-36141 | Medium | 5.3 | 2023-08-04 | User enumeration is found in in PHPJabbers Cleaning Business Software 1.0. This issue occurs during password recovery, where a difference in messages could all… |
CVE-2023-4115 | Medium | 4.3 | 2023-08-03 | A vulnerability classified as problematic has been found in PHP Jabbers Cleaning Business 1.0. Affected is an unknown function of the file /index.php. The mani… |