A vulnerability was found in SourceCodester Survey Application System 1.0 and classified as problematic. This issue affects some unknown processing of the component Add New Handler. The manipulation of the argument Title with the input <script>prompt(document.domain)</script> leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-225329 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://vuldb.com/?ctiid.225329 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.225329 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
18 Apr 2023, 01:05
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-07 23:15
Updated : 2024-05-17 02:18
NVD link : CVE-2023-1946
Mitre link : CVE-2023-1946
CVE.ORG link : CVE-2023-1946
JSON object : View
Products Affected
survey_application_system_project
- survey_application_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')