CVE-2023-39776

A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file.
Configurations

Configuration 1 (hide)

cpe:2.3:a:phpjabbers:ticket_support_script:3.2:*:*:*:*:*:*:*

History

21 Nov 2024, 08:15

Type Values Removed Values Added
References () https://medium.com/%40milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e - () https://medium.com/%40milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e -
References () https://www.phpjabbers.com/ticket-support-script - Product () https://www.phpjabbers.com/ticket-support-script - Product

07 Nov 2023, 04:17

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e', 'name': 'https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • () https://medium.com/%40milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e -

11 Aug 2023, 17:52

Type Values Removed Values Added
First Time Phpjabbers ticket Support Script
Phpjabbers
CPE cpe:2.3:a:phpjabbers:ticket_support_script:3.2:*:*:*:*:*:*:*
CWE CWE-434
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
References (MISC) https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e - (MISC) https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e - Exploit, Third Party Advisory
References (MISC) https://www.phpjabbers.com/ticket-support-script - (MISC) https://www.phpjabbers.com/ticket-support-script - Product

10 Aug 2023, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-10 15:15

Updated : 2024-11-21 08:15


NVD link : CVE-2023-39776

Mitre link : CVE-2023-39776

CVE.ORG link : CVE-2023-39776


JSON object : View

Products Affected

phpjabbers

  • ticket_support_script
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type