Login Sign Up

CVE-2023-51331

6.5 MEDIUM

📋 TL;DR

PHPJabbers Cleaning Business Software v1.0 has a CSV injection vulnerability that allows attackers to execute arbitrary code when malicious CSV files are processed. This affects any organization using this specific software version. The vulnerability stems from insufficient input validation in the Languages section's Labels parameters.

💻 Affected Systems

Products:
  • PHPJabbers Cleaning Business Software
Versions: v1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the System Options → Languages section where CSV files are processed.

📦 What is this software?

Cleaning Business Software by Phpjabbers

View all CVEs affecting Cleaning Business Software →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, and lateral movement within the network.

🟠

Likely Case

Data exfiltration, system manipulation, or installation of backdoors through crafted CSV payloads.

🟢

If Mitigated

Limited impact with proper input validation and CSV sanitization in place.

🌐 Internet-Facing: HIGH - The vulnerability can be exploited remotely if the application is internet-facing.
🏢 Internal Only: MEDIUM - Internal users with access could exploit, but requires some level of access.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires access to upload or manipulate CSV files in the Languages section.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not available

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available or implementing workarounds.

🔧 Temporary Workarounds

Input Validation for CSV Fields

all

Implement strict input validation and sanitization for all CSV file inputs, particularly in the Languages section.

Disable CSV Import Functionality

all

Temporarily disable CSV import features in the System Options → Languages section until a fix is available.

🧯 If You Can't Patch

  • Restrict access to the System Options section to only trusted administrators.
  • Implement web application firewall (WAF) rules to block CSV injection patterns.

🔍 How to Verify

Check if Vulnerable:

Check if using PHPJabbers Cleaning Business Software v1.0 and if CSV import functionality is enabled in System Options → Languages.

Check Version:

Check software version in admin panel or configuration files.

Verify Fix Applied:

Test CSV import with malicious payloads to ensure proper sanitization and validation.

📡 Detection & Monitoring

Log Indicators:

  • Unusual CSV file uploads
  • Suspicious activity in System Options → Languages section
  • Unexpected system commands in logs

Network Indicators:

  • Unusual outbound connections following CSV uploads

SIEM Query:

Search for CSV file uploads containing formula injection patterns (e.g., =cmd|' /C calc'!A0) in web logs.

📊 Metadata

CVE ID: CVE-2023-51331
CVSS v3 Score: 6.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CWE: CWE-94
EPSS Score: 0.1% exploit probability (28.2th percentile)
Published: February 20, 2025
Last Updated: November 4, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-51331, you might also want to check these:

CVE-2025-62521 10.0

CVE-2025-62521 is a critical pre-authentication remote code execution vulnerability in ChurchCRM tha...

Same vulnerability type (CWE-94)
CVE-2026-26216 10.0

Crawl4AI versions before 0.8.0 contain an unauthenticated remote code execution vulnerability in the...

Same vulnerability type (CWE-94)
CVE-2021-22205 10.0

CVE-2021-22205 is a critical remote code execution vulnerability in GitLab CE/EE where improper vali...

Same vulnerability type (CWE-94)