Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2024/07/01 12:0 a.m.176 views

Customer Support System 1.0 Cross Site Scripting

Exploit Title: Customer Support System 1.0 - XSS Cross-Site Scripting Vulnerability in the "subject" at "ticketlist" Date: 28/11/2023 Exploit Author: Geraldo Alcantara Vendor Homepage: https://www.sourcecodester.com/php/14587/customer-support-system-using-phpmysqli-source-code.html Software Link:...

7.1AI score0.00466EPSS
Exploits4
Exploit DB
Exploit DB
added 2024/07/01 12:0 a.m.226 views

Customer Support System 1.0 - Stored XSS

Exploit Title: Customer Support System 1.0 - XSS Cross-Site Scripting Vulnerability in the "subject" at "ticketlist" Date: 28/11/2023 Exploit Author: Geraldo Alcantara Vendor Homepage: https://www.sourcecodester.com/php/14587/customer-support-system-using-phpmysqli-source-code.html Software Link:...

5.4CVSS6.7AI score0.00466EPSS
Exploits4
Vulnrichment
Vulnrichment
added 2024/03/06 12:0 a.m.15 views

CVE-2023-49976

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the subject parameter at /customersupport/index.php?page=newticket...

5.7AI score0.00466EPSS
Exploits4References2
CVE
CVE
added 2024/03/06 12:0 a.m.60 views

CVE-2023-49976

Summary: CVE-2023-49976 is an XSS vulnerability in Customer Support System v1. The flaw allows arbitrary web scripts/HTML to be executed via a crafted payload in the subject parameter on the /customer_support/index.php?page=new_ticket page. Primary affected component: the subject field used durin...

5.4CVSS5.7AI score0.00466EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder