GCVE - cpe:2.3:a:phpjabbers:car_park_booking

Approved changes feed: RSS · Atom

cpe:2.3:a:phpjabbers:car_park_booking_system:3.0:*:*:*:*:*:*:*

part: a version: 3.0 update: *

Vendor	Phpjabbers (`2f919538-31c8-5cbb-b18c-c6079deaeb0d`)
Product	Car Park Booking System (`de877c17-6d82-5575-b384-f276d7868391`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-51311`	vulnerable	2026-06-03 14:53:31.987247	Details available PHPJabbers Car Park Booking System v3.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file. Published: 2025-02-20T00:00:00.000Z Updated: 2025-11-04T18:20:59.359Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/car-park-booking/#sectionDemo https://packetstorm.news/files/id/176494	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-51310`	vulnerable	2026-06-03 14:53:31.986848	Details available A lack of rate limiting in the 'Forgot Password', 'Email Settings' feature of PHPJabbers Car Park Booking System v3.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages. Published: 2025-02-20T00:00:00.000Z Updated: 2025-11-04T18:20:58.170Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/car-park-booking/#sectionDemo https://packetstorm.news/files/id/176492	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-51309`	vulnerable	2026-06-03 14:53:31.986551	Details available A lack of rate limiting in the 'Email Settings' feature of PHPJabbers Car Park Booking System v3.0 allows attackers to send an excessive amount of email for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages. Published: 2025-02-20T00:00:00.000Z Updated: 2025-11-04T18:20:57.007Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/car-park-booking/#sectionDemo https://packetstorm.news/files/id/176492	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-51308`	vulnerable	2026-06-03 14:53:31.986159	Details available PHPJabbers Car Park Booking System v3.0 is vulnerable to Multiple HTML Injection in the "name, plugin_sms_api_key, plugin_sms_country_code, title, plugin_sms_api_key, title" parameters. Published: 2025-02-20T00:00:00.000Z Updated: 2025-11-04T18:20:55.798Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/car-park-booking/#sectionDemo https://packetstorm.news/files/id/176491	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Car Park Booking System

PURL mappings

Vulnerability references

Contribute