PT-2023-30977 · Unknown · Car Rental
Published
2023-12-06
·
Updated
2023-12-09
·
CVE-2023-48834
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Car Rental version 3.0
Description
A lack of rate limiting in
pjActionAjaxSend allows attackers to cause resource exhaustion.Recommendations
For Car Rental version 3.0, consider implementing rate limiting for the
pjActionAjaxSend function to prevent resource exhaustion. As a temporary workaround, restrict access to this function to minimize the risk of exploitation.Exploit
Fix
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Car Rental