Lucene search
China National Vulnerability DatabaseCNVD-2023-29419HistoryApr 18, 2023 - 12:00 a.m.
Campcodes Advanced Online Voting System Cross-Site Scripting Vulnerability
2023-04-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
online voting
cross-site scripting
vulnerability
web script
html
attack
filtering
escaping
security advisory
exploitation
0.001 Low
EPSS
Percentile
41.8%
Campcodes Advanced Online Voting System is an online voting system. A cross-site scripting vulnerability exists in Campcodes Advanced Online Voting System v1.0. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the parameter title of the file /admin/config_save.php, which could be exploited by an attacker to execute by injecting a carefully crafted payload arbitrary Web script or HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| campcodes advanced online voting system campcodes advanced online voting system v | eq | 1.0 |
Related
cve
cve
CVE-2023-2055
2023-04-14 13:15:08
nvd
nvd
CVE-2023-2055
2023-04-14 13:15:08
cvelist
cvelist
prion
prion
Cross site scripting
2023-04-14 13:15:00