CVE-2023-36315 (callback_widget)

There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0.

action callback cross site scripting cve parameter php scripting vulnerability xss