phpjabbers ticket_support_script CVE Vulnerabilities (3)

CVEs: 3 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting phpjabbers ticket_support_script (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2023-40766	User enumeration is found in in PHPJabbers Ticket Support Script v3.2. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.	[email protected]	9.8	0.11%	2023-08-28	2024-11-21
CVE-2023-40753	There is a Cross Site Scripting (XSS) vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2.	[email protected]	5.4	1.05%	2023-08-28	2024-11-21
CVE-2023-39776	A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file.	[email protected]	9.8	0.15%	2023-08-10	2024-11-21

cvelogic Threat Intelligence