CVE-2023-23024

Description

Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the writer parameter.

Related CPE's

abook_store_management_system_projectbook_store_management_system1.0*******

References

https://gist.github.com/enferas/6ae66b7daf4f86997cd5320975f209e2

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io