Lucene search

[email protected]CVE-2023-31705

HistoryJul 13, 2023 - 3:15 p.m.

CVE-2023-31705

2023-07-1315:15:08

CWE-79

[email protected]

web.nvd.nist.gov

"cve-2023-31705

xss

sourcecodester task reminder system 1.0

security vulnerability"

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

18.1%

JSON

A Reflected Cross-site scripting (XSS) vulnerability in Sourcecodester Task Reminder System 1.0 allows an authenticated user to inject malicious javascript into the page parameter.

Affected configurations

NVD

Node

task_reminder_system_projecttask_reminder_systemMatch1.0

CPENameOperatorVersion
task_reminder_system_project:task_reminder_systemtask reminder system project task reminder systemeq1.0

CPE	Name	Operator	Version
task_reminder_system_project:task_reminder_system	task reminder system project task reminder system	eq	1.0

References

github.com/d34dun1c02n/CVE-2023-31705

www.sourcecodester.com/download-code?nid=16451&title=Task+Reminder+System+in+PHP+and+MySQL+Source+Code+Free+Download