CVE-2023-38830

HIGH

PHPJabbers Yacht Listing Script <1.0 - Info Disclosure

Title source: llm

Description

An information leak in PHPJabbers Yacht Listing Script v1.0 allows attackers to export clients' credit card numbers from the Reservations module.

References (2)

Scores

CVSS v3 7.5
EPSS 0.0007
EPSS Percentile 20.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-668
Status published

Affected Products (1)

phpjabbers/yacht_listing_script

Timeline

Published Aug 10, 2023
Tracked Since Feb 18, 2026