CVE-2023-51321

Name of the Vulnerable Software and Affected Versions PHPJabbers Night Club Booking Software version 1.0

Description A lack of rate limiting in the 'Forgot Password' feature allows attackers to send an excessive amount of email to a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages. The Forgot Password feature is vulnerable due to the lack of rate limiting, allowing attackers to exploit this weakness.

Recommendations For PHPJabbers Night Club Booking Software version 1.0, consider implementing rate limiting in the Forgot Password feature to prevent excessive email sending. As a temporary workaround, consider disabling the Forgot Password feature until a patch is available. Restrict access to the Forgot Password functionality to minimize the risk of exploitation.