Lucene search
China National Vulnerability DatabaseCNVD-2023-29382HistoryApr 16, 2023 - 12:00 a.m.
Online Computer and Laptop Store Cross-Site Scripting Vulnerability (CNVD-2023-29382)
2023-04-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
cross-site scripting
online store
web script vulnerability
web security
0.001 Low
EPSS
Percentile
35.5%
Online Computer and Laptop Store is an online computer and laptop store from Carlo Monteroβs personal developer. A cross-site scripting vulnerability exists in Online Computer and Laptop Store v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the Brand Name parameter of the /admin/?page=maintenance/brand file, which could be exploited by an attacker to execute arbitrary Web script or HTML by injecting a carefully crafted payload to execute arbitrary Web scripts or HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| carlo montero online computer and laptop store v | eq | 1.0 |
Related
nvd
nvd
CVE-2023-1988
2023-04-11 19:15:08
cvelist
cvelist
cve
cve
CVE-2023-1988
2023-04-11 19:15:08
prion
prion
Cross site scripting
2023-04-11 19:15:00