CVE-2023-38830

An information leak in PHPJabbers Yacht Listing Script v1.0 allows attackers to export clients' credit card numbers from the Reservations module.
Configurations

Configuration 1 (hide)

cpe:2.3:a:phpjabbers:yacht_listing_script:1.0:*:*:*:*:*:*:*

History

07 Nov 2023, 04:17

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e', 'name': 'https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • () https://medium.com/%40milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e -

11 Aug 2023, 17:53

Type Values Removed Values Added
References (MISC) https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e - (MISC) https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e - Exploit, Third Party Advisory
References (MISC) https://www.phpjabbers.com/yacht-listing-script - (MISC) https://www.phpjabbers.com/yacht-listing-script - Product
First Time Phpjabbers yacht Listing Script
Phpjabbers
CWE CWE-668
CPE cpe:2.3:a:phpjabbers:yacht_listing_script:1.0:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

10 Aug 2023, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-10 15:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-38830

Mitre link : CVE-2023-38830

CVE.ORG link : CVE-2023-38830


JSON object : View

Products Affected

phpjabbers

  • yacht_listing_script
CWE
CWE-668

Exposure of Resource to Wrong Sphere