Denial of Service Risk in PHPJabbers Night Club Booking Software
CVE-2023-51321

6.5MEDIUM

Key Information:

Vendor: PHPJabbers
Status: Night Club Booking Software
Vendor: CVE Published:; 20 February 2025

Summary

The PHPJabbers Night Club Booking Software v1.0 is vulnerable due to the absence of rate limiting in its 'Forgot Password' feature. This flaw permits attackers to exploit the functionality by generating a vast number of e-mail requests for valid users. Such excessive emailing can overwhelm the email server, leading to potential Denial of Service (DoS) conditions that disrupt legitimate access and operational functionality.

References

https://www.phpjabbers.com/night-club-booking-software/#s...

https://packetstorm.news/files/id/176502

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 20, 2025
Vulnerability Reserved
Dec 18, 2023