Phpjabbers Hotel_booking_system

6 CVEs affecting Phpjabbers Hotel_booking_system. Latest disclosed: 2025-02-19. Critical: 1, High: 2.

Top CVEs affecting Phpjabbers Hotel_booking_system
CVESeverityScorePublishedSummary
CVE-2023-40760Critical9.82023-08-28User enumeration is found in PHP Jabbers Hotel Booking System v4.0. This issue occurs during password recovery, where a difference in messages could allow an a…
CVE-2023-51302High8.82025-02-19PHPJabbers Hotel Booking System v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due…
CVE-2023-51301High7.52025-02-19A lack of rate limiting in the "Login Section, Forgot Email" feature of PHPJabbers Hotel Booking System v4.0 allows attackers to send an excessive amount of re…
CVE-2023-51297Medium6.52025-02-19A lack of rate limiting in the 'Email Settings' feature of PHPJabbers Hotel Booking System v4.0 allows attackers to send an excessive amount of email for a leg…
CVE-2023-51300Medium6.12025-02-19PHPJabbers Hotel Booking System v4.0 is vulnerable to Cross-Site Scripting (XSS) vulnerabilities in the "name, plugin_sms_api_key, plugin_sms_country_code, tit…
CVE-2023-51299Medium6.12025-02-19PHPJabbers Hotel Booking System v4.0 is vulnerable to HTML Injection in the "name, plugin_sms_api_key, plugin_sms_country_code, title, plugin_sms_api_key, titl…