Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Phpjabbers | Member Login Script | affected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Phpjabbers | Member Login Script | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No remediation available yet.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 16 Dec 2025 21:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Phpjabbers
Phpjabbers member Login Script |
|
| Vendors & Products |
Phpjabbers
Phpjabbers member Login Script |
Mon, 15 Dec 2025 22:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 15 Dec 2025 20:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Member Login Script 3.3 contains a client-side desynchronization vulnerability that allows attackers to manipulate HTTP request handling by exploiting Content-Length header parsing. Attackers can send crafted POST requests with smuggled secondary requests to potentially bypass server-side request processing controls. | |
| Title | Member Login Script 3.3 Client-Side Request Desynchronization Vulnerability | |
| Weaknesses | CWE-444 | |
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: VulnCheck
Published:
Updated: 2026-04-07T14:07:05.044Z
Reserved: 2025-12-13T14:25:04.999Z
Link: CVE-2023-53878
Vulnrichment
Updated: 2025-12-15T21:40:19.308Z
NVD
Status : Deferred
Published: 2025-12-15T21:15:50.563
Modified: 2026-04-15T00:35:42.020
Link: CVE-2023-53878
Redhat
No data.
OpenCVE Enrichment
Updated: 2025-12-16T20:45:33Z