A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields.
References
Link | Resource |
---|---|
https://github.com/c0n5n3d/CVE-2021-43657/blob/main/Info.txt | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-12-21 18:15
Updated : 2022-12-27 14:50
NVD link : CVE-2021-43657
Mitre link : CVE-2021-43657
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
simple_client_management_system_project
- simple_client_management_system