4 matches found
Customer Support System 1.0 Cross Site Scripting
Exploit Title: Customer Support System 1.0 - XSS Cross-Site Scripting Vulnerability in the "subject" at "ticketlist" Date: 28/11/2023 Exploit Author: Geraldo Alcantara Vendor Homepage: https://www.sourcecodester.com/php/14587/customer-support-system-using-phpmysqli-source-code.html Software Link:...
Customer Support System 1.0 - Stored XSS
Exploit Title: Customer Support System 1.0 - XSS Cross-Site Scripting Vulnerability in the "subject" at "ticketlist" Date: 28/11/2023 Exploit Author: Geraldo Alcantara Vendor Homepage: https://www.sourcecodester.com/php/14587/customer-support-system-using-phpmysqli-source-code.html Software Link:...
CVE-2023-49976
A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the subject parameter at /customersupport/index.php?page=newticket...
CVE-2023-49976
Summary: CVE-2023-49976 is an XSS vulnerability in Customer Support System v1. The flaw allows arbitrary web scripts/HTML to be executed via a crafted payload in the subject parameter on the /customer_support/index.php?page=new_ticket page. Primary affected component: the subject field used durin...