Lucene search
China National Vulnerability DatabaseCNVD-2023-07971HistoryFeb 08, 2023 - 12:00 a.m.
Online Food Ordering System login.php Cross-Site Scripting Vulnerability
2023-02-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
cross-site scripting
online food ordering system
login.php
vulnerability
user-supplied data
redirect parameter
exploitation
attackers
0.001 Low
EPSS
Percentile
32.4%
A cross-site scripting vulnerability exists in Online Food Ordering System, an online food ordering system. The vulnerability is caused by a lack of effective filtering and escaping of user-supplied data in the redirect parameter of the login.php page, which can be exploited by attackers to cause cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| online food ordering system online food ordering system | eq | 2.0 |
Related
prion
prion
Cross site scripting
2023-02-06 15:15:00
cvelist
cvelist
CVE-2023-24192
2023-02-06 00:00:00
nvd
nvd
CVE-2023-24192
2023-02-06 15:15:10
cve
cve
CVE-2023-24192
2023-02-06 15:15:10