Lucene search

MitreCVE-2023-34652

HistoryJun 28, 2023 - 9:15 p.m.

CVE-2023-34652

2023-06-2821:15:10

CWE-79

mitre

web.nvd.nist.gov

cve-2023-34652

phpgurukl

hostel management system

xss

add new course

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

32.9%

JSON

PHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS) via Add New Course.

Affected configurations

Nvd

Node

phpgurukulhostel_management_systemMatch1.0

VendorProductVersionCPE
phpgurukulhostel_management_system1.0cpe:2.3:a:phpgurukul:hostel_management_system:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phpgurukul	hostel_management_system	1.0	cpe:2.3:a:phpgurukul:hostel_management_system:1.0:::::::*

References

github.com/ckalnarayan/Common-Vulnerabilities-and-Exposures/blob/main/CVE-2023-34652

phpgurukul.com/hostel-management-system/

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

32.9%

JSON

Related for CVE-2023-34652