Lucene search

VulDBCVELIST:CVE-2022-2811

HistoryAug 14, 2022 - 10:15 a.m.

CVE-2022-2811 SourceCodester Guest Management System myform.php cross site scripting

2022-08-1410:15:20

CWE-79

VulDB

www.cve.org

sourcecodester guest management system

myform.php

cross site scripting

remote attack

vdb-206397

cve-2022-2811

CVSS3

3.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

49.6%

JSON

A vulnerability classified as problematic has been found in SourceCodester Guest Management System. This affects an unknown part of the file myform.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206397 was assigned to this vulnerability.

CNA Affected

[
  {
    "product": "Guest Management System",
    "vendor": "SourceCodester",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

References

s1.ax1x.com/2022/08/13/vtDEFO.png

vuldb.com/?id.206397

CVSS3

3.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

49.6%

JSON

Related for CVELIST:CVE-2022-2811