CVE-2022-41358

2022-10-2000:00:00

mitre

www.cve.org

cross-site scripting

garage management system

arbitrary web scripts

EPSS

0.003

Percentile

71.6%

JSON

A stored cross-site scripting (XSS) vulnerability in Garage Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the categoriesName parameter in createCategories.php.

References

packetstormsecurity.com/files/168718/Garage-Management-System-1.0-Cross-Site-Scripting.html

cxsecurity.com/issue/WLB-2022100037

github.com/thecasual/CVE-2022-41358

vulmon.com/vulnerabilitydetails?qid=CVE-2022-41358

www.samwallace.dev/research/Stored%20XSS%20in%20GMS%201.0

www.sourcecodester.com/php/15485/garage-management-system-using-phpmysql-source-code.html

EPSS

0.003

Percentile

71.6%

JSON

Related for CVELIST:CVE-2022-41358