CVE-2023-51305

Name of the Vulnerable Software and Affected Versions PHPJabbers Car Park Booking System version 3.0

Description The issue concerns Multiple Stored Cross-Site Scripting (XSS) in the parameters name, plugin sms api key, plugin sms country code, and title. This allows for the potential execution of malicious scripts. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For PHPJabbers Car Park Booking System version 3.0, as a temporary workaround, consider restricting input for the parameters name, plugin sms api key, plugin sms country code, and title to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.