Cross Site Scripting in PHPJabbers Yacht Listing Script
CVE-2023-40750
6.1MEDIUM
What is CVE-2023-40750?
The Yacht Listing Script by PHPJabbers contains a Cross Site Scripting (XSS) vulnerability that allows an attacker to inject malicious scripts via the 'action' parameter in index.php. This flaw can lead to unauthorized actions, data theft, or compromise of user sessions, creating significant security risks for users of the application.