Headline

CVE-2022-45214: CVE/CVE-2022-45214.txt at main · Rajeshwar40/CVE

A cross-site scripting (XSS) vulnerability in Sanitization Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter at /php-sms/classes/Login.php.

2 years ago

CVE

Open in Source

#sql #xss #vulnerability #web #php

> [Suggested description]

> A cross-site scripting (XSS) vulnerability in Sanitization Management

> System v1.0.0 allows attackers to execute arbitrary web scripts or HTML

> via a crafted payload injected into the username parameter at

> /php-sms/classes/Login.php.

> ------------------------------------------

> [Vulnerability Type]

> Cross Site Scripting (XSS)

> ------------------------------------------

> [Vendor of Product]

> https://www.sourcecodester.com

> ------------------------------------------

> [Affected Product Code Base]

> Sanitization Management System - V 1.0.0

> ------------------------------------------

> [Affected Component]

> username

> ------------------------------------------

> [Attack Type]

> Local

> ------------------------------------------

> [Impact Code execution]

> true

> ------------------------------------------

> [Reference]

> https://www.sourcecodester.com/php/15770/sanitization-management-system-project-php-and-mysql-free-source-code.html

> ------------------------------------------

> [Discoverer]

> Rajeshwar Singh

Use CVE-2022-45214.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

12 months ago

12 months ago

12 months ago

12 months ago

12 months ago