CVE-2023-51330

Name of the Vulnerable Software and Affected Versions PHPJabbers Cinema Booking System version 1.0

Description The issue concerns a Reflected Cross-Site Scripting (XSS) vulnerability in the Now Showing menu, specifically affecting the date parameter. This allows for potential malicious script injection, posing a risk to users.

Recommendations For PHPJabbers Cinema Booking System version 1.0, consider disabling the date parameter in the Now Showing menu as a temporary workaround until a patch is available. Restrict access to this parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.