CVE-2023-51334
First published: Thu Feb 20 2025(Updated: )
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cinema Booking System v1.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHPJabbers Cinema Booking System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-51334?
CVE-2023-51334 is considered a high-severity vulnerability due to its potential to cause Denial of Service (DoS) through excessive email generation.
How do I fix CVE-2023-51334?
To fix CVE-2023-51334, implement rate limiting in the 'Forgot Password' feature to restrict the number of requests a user can make.
What is the impact of CVE-2023-51334 on users?
The impact of CVE-2023-51334 on users is that it can lead to overwhelming email notifications, potentially disrupting user experience and causing denial of service.
Which version of PHPJabbers Cinema Booking System is affected by CVE-2023-51334?
CVE-2023-51334 affects PHPJabbers Cinema Booking System version 1.0.
Can CVE-2023-51334 be exploited remotely?
Yes, CVE-2023-51334 can be exploited remotely by attackers taking advantage of the lack of rate limiting.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/author
- agent/severity
- agent/source
- agent/weakness
- agent/tags
- agent/event
- vendor/phpjabbers
- canonical/phpjabbers cinema booking system