First published: Thu Aug 10 2023(Updated: )
An information leak in PHPJabbers Yacht Listing Script v1.0 allows attackers to export clients' credit card numbers from the Reservations module.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
PHPJabbers Yacht Listing Script | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-38830 is high, with a CVSS score of 7.5.
CVE-2023-38830 is an information leak vulnerability in PHPJabbers Yacht Listing Script v1.0, allowing attackers to export clients' credit card numbers from the Reservations module.
Attackers can exploit CVE-2023-38830 by leveraging the vulnerability in PHPJabbers Yacht Listing Script v1.0 to export clients' credit card numbers from the Reservations module.
To mitigate CVE-2023-38830, it is recommended to update PHPJabbers Yacht Listing Script to a version that addresses the vulnerability or apply any patches provided by the vendor.
You can find more information about CVE-2023-38830 on the following references: [Reference 1](https://medium.com/@milfortutz/multiple-vulnerabilities-in-phpjabbers-part-2-4fa5e2ccfe2e), [Reference 2](https://www.phpjabbers.com/yacht-listing-script).