Skip to main content

Ticket Support Script

3 CVEs product

Monthly

CVE-2023-40766 CRITICAL Act Now

User enumeration is found in in PHPJabbers Ticket Support Script v3.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ticket Support Script
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-40753 MEDIUM POC This Month

There is a Cross Site Scripting (XSS) vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Ticket Support Script
NVD
CVSS 3.1
5.4
EPSS
1.1%
CVE-2023-39776 CRITICAL Act Now

A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE File Upload Ticket Support Script
NVD
CVSS 3.1
9.8
EPSS
0.9%
EPSS 1% CVSS 9.8
CRITICAL Act Now

User enumeration is found in in PHPJabbers Ticket Support Script v3.2. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ticket Support Script
NVD
EPSS 1% CVSS 5.4
MEDIUM POC This Month

There is a Cross Site Scripting (XSS) vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Ticket Support Script
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE File Upload Ticket Support Script
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy