Lucene search
China National Vulnerability DatabaseCNVD-2023-40604HistoryMay 17, 2023 - 12:00 a.m.
File Tracker Manager System Cross-Site Scripting Vulnerability
2023-05-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
file tracker manager
cross-site scripting
vulnerability
version 1.0
user-supplied data
filtering
escaping
arbitrary
web script
html
attack
0.001 Low
EPSS
Percentile
49.7%
File Tracker Manager System is a file tracker manager system. File Tracker Manager System v1.0 version of a cross-site scripting vulnerability, the vulnerability stems from the /file_manager/admin/save_user.php parameter firstname of the user-supplied data lack of effective filtering and escaping, an attacker can exploit this vulnerability by injecting a well-designed payload Execute arbitrary Web script or HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| file tracker manager system file tracker manager system | eq | 1.0 |
Related
cvelist
cvelist
prion
prion
Cross site scripting
2023-05-12 10:15:00
nvd
nvd
CVE-2023-2678
2023-05-12 10:15:09
cve
cve
CVE-2023-2678
2023-05-12 10:15:09