Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-43097: GitHub - nibin-m/CVE-2022-43097: All details about CVE-2022-43097

Phpgurukul User Registration & User Management System v3.0 was discovered to contain multiple stored cross-site scripting (XSS) vulnerabilities via the firstname and lastname parameters of the registration form & login pages.

CVE
Open in Source
#xss#vulnerability#web#git#php

CVE-2022-43097

All details about CVE-2022-43097

Software: Phpgurukul User Registration & User Management System v3.0

Software Link: https://phpgurukul.com/user-registration-login-and-user-management-system-with-admin-panel/

Description: Phpgurukul User Registration & User Management System v3.0 was discovered to contain multiple stored cross-site scripting (XSS) vulnerabilities via the first name and last name parameters of the registration form & login pages.

Vulnerability Type: Stored Cross Site Scripting (XSS)

Affected Product Code Base: User Registration & Login and User Management System With admin panel

Affected Component: http://127.0.0.1/login.php, http://127.0.0.1/welcome.php

Attack Type: Remote

Attack Vectors: Malicious payload get saved on to the webserver as first name and last name.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE