CVE-2023-51335

Name of the Vulnerable Software and Affected Versions PHPJabbers Cinema Booking System version 1.0

Description The issue concerns multiple Stored Cross-Site Scripting (XSS) vulnerabilities in the title and name parameters. This allows attackers to inject malicious scripts into the system, potentially leading to unauthorized access or data theft. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For PHPJabbers Cinema Booking System version 1.0, consider disabling the title and name parameters until a patch is available to prevent exploitation of the Stored XSS vulnerability. Restrict access to these parameters to minimize the risk of malicious script injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.