GCVE - cpe:2.3:a:phpjabbers:time_slots_booking

Approved changes feed: RSS · Atom

cpe:2.3:a:phpjabbers:time_slots_booking_calendar:3.3:*:*:*:*:*:*:*

part: a version: 3.3 update: *

Vendor	Phpjabbers (`2f919538-31c8-5cbb-b18c-c6079deaeb0d`)
Product	Time Slots Booking Calendar (`8335c1f6-ad2e-5ca6-9970-3981e5d70336`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-33564`	vulnerable	2026-06-03 14:52:14.468896	Details available There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3. Published: 2023-08-01T00:00:00.000Z Updated: 2024-10-21T13:44:32.016Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ https://medium.com/%40bcksec/multiple-vulnerabilities-in-php-jabbers-scripts-25af4afcadd4	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-33563`	vulnerable	2026-06-03 14:52:14.468605	Details available In PHP Jabbers Time Slots Booking Calendar 3.3 , lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts. Published: 2023-08-01T00:00:00.000Z Updated: 2024-10-21T13:45:28.703Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ https://medium.com/%40bcksec/multiple-vulnerabilities-in-php-jabbers-scripts-25af4afcadd4	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-33562`	vulnerable	2026-06-03 14:52:14.468305	Details available User enumeration is found in in PHP Jabbers Time Slots Booking Calendar v3.3. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users. Published: 2023-08-01T00:00:00.000Z Updated: 2024-10-21T13:47:08.970Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ https://medium.com/%40bcksec/multiple-vulnerabilities-in-php-jabbers-scripts-25af4afcadd4	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-33561`	vulnerable	2026-06-03 14:52:14.467975	Details available Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords. Published: 2023-08-01T00:00:00.000Z Updated: 2024-10-21T13:47:40.249Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ https://medium.com/%40bcksec/multiple-vulnerabilities-in-php-jabbers-scripts-25af4afcadd4	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-33560`	vulnerable	2026-06-03 14:52:14.467560	Details available There is a Cross Site Scripting (XSS) vulnerability in "cid" parameter of preview.php in PHPJabbers Time Slots Booking Calendar v3.3. Published: 2023-08-01T00:00:00.000Z Updated: 2024-10-21T13:48:05.857Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ https://medium.com/%40bcksec/multiple-vulnerabilities-in-php-jabbers-scripts-25af4afcadd4	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

PHPJabbers Time Slots Booking Calendar 3.3

PURL mappings

Vulnerability references

Contribute