Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2023-65137
HistoryAug 06, 2023 - 12:00 a.m.

Cleaning Business Software Cross-Site Scripting Vulnerability

2023-08-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
cleaning business software
phpjabbers
cross-site scripting
vulnerability
filtering
escaping
arbitrary web script
html
injection

EPSS

0.003

Percentile

70.9%

Cleaning Business Software is PHPJabbers open source a cleaning business software. Cleaning Business Software v1.0 version of the existence of cross-site scripting vulnerabilities , the vulnerability stems from the file / index.php parameter index of the user-supplied data lack of effective filtering and escaping , an attacker can exploit the vulnerability by injecting a well-designed payload to execute arbitrary Web script or HTML.

EPSS

0.003

Percentile

70.9%