cbcvebase.
CVE-2023-51298
published 2025-02-19

CVE-2023-51298: PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists…

PriorityP423medium4.7CVSS 3.1
AVNACLPRNUIRSCCLINAN
EPSS
0.37%
28.8th percentile
PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file.

Affected

1 ranges
VendorProductVersion rangeFixed in
phpjabbersevent_booking_calendar
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.