CVE-2023-5302
A vulnerability, which was classified as problematic, has been found in SourceCodester Best Courier Management System 1.0. This issue affects some unknown processing of the component Manage Account Page. The manipulation of the argument First Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-240941 was assigned to this vulnerability.
Published
2023-09-30T12:15:09.963
Last Modified
2024-11-21T08:41:29.287
Status
Modified
Source
[email protected]
Severity
CVSSv3.1: 3.5 (LOW)
CVSSv2 Vector
AV:N/AC:L/Au:S/C:N/I:P/A:N
- Access Vector: NETWORK
- Access Complexity: LOW
- Authentication: SINGLE
- Confidentiality Impact: NONE
- Integrity Impact: PARTIAL
- Availability Impact: NONE
Exploitability Score
8.0
Impact Score
2.9
Weaknesses
Affected Vendors & Products
References
-
https://github.com/rohit0x5/poc/blob/main/cve_2
Exploit, Third Party Advisory
([email protected])
-
https://vuldb.com/?ctiid.240941
Permissions Required, Third Party Advisory, VDB Entry
([email protected])
-
https://vuldb.com/?id.240941
Permissions Required, Third Party Advisory, VDB Entry
([email protected])
-
https://github.com/rohit0x5/poc/blob/main/cve_2
Exploit, Third Party Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://vuldb.com/?ctiid.240941
Permissions Required, Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)
-
https://vuldb.com/?id.240941
Permissions Required, Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)