Denial of Service Vulnerability in PHPJabbers Meeting Room Booking System
CVE-2023-51332

4.3MEDIUM

Key Information:

Vendor: PHPJabbers
Status: Meeting Room Booking System
Vendor: CVE Published:; 20 February 2025

What is CVE-2023-51332?

The Meeting Room Booking System by PHPJabbers is vulnerable due to inadequate rate limiting in the 'Forgot Password' feature. This flaw allows attackers to exploit the system by sending an overwhelming number of email requests for a legitimate user. As a result, it can lead to potential Denial of Service (DoS), disrupting email services and causing operational issues for affected individuals and organizations.

References

https://www.phpjabbers.com/meeting-room-booking-system/#s...

https://packetstorm.news/files/id/176510

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 20, 2025
Vulnerability Reserved
Dec 18, 2023