Lucene search

MitreCVE-2023-46583

HistoryOct 25, 2023 - 10:15 p.m.

CVE-2023-46583

2023-10-2522:15:09

CWE-79

mitre

web.nvd.nist.gov

cve-2023-46583

cross-site scripting

xss

phpgurukul nipah virus

niv

testing management system

security vulnerability

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

19.8%

JSON

Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field.

Affected configurations

Nvd

Node

phpgurukulnipah_virus_testing_management_systemMatch1.0

VendorProductVersionCPE
phpgurukulnipah_virus_testing_management_system1.0cpe:/a:phpgurukul:nipah_virus_testing_management_system:1.0:::

Vendor	Product	Version	CPE
phpgurukul	nipah_virus_testing_management_system	1.0	cpe:/a:phpgurukul:nipah_virus_testing_management_system:1.0:::

References

github.com/rumble773/sec-research/blob/main/NiV/CVE-2023-46583.md

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

19.8%

JSON

Related for CVE-2023-46583