.. / CVE-2023-4114

Exploit for PHP Jabbers Night Club Booking 1.0 - Cross Site Scripting (CVE-2023-4114)

Description:

A vulnerability was found in PHP Jabbers Night Club Booking Software 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /index.php. The manipulation of the argument index leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-235961 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Nuclei Template

View the template here CVE-2023-4114.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-4114.yaml
Copy

References:

http://packetstormsecurity.com/files/173932/PHPJabbers-Night-Club-Booking-1.0-Cross-Site-Scripting.html
https://nvd.nist.gov/vuln/detail/CVE-2023-4114
https://vuldb.com/?id.235961
https://vuldb.com/?ctiid.235961
https://www.exploitalert.com/view-details.html?id=39749