A vulnerability has been found in SourceCodester Design and Implementation of Covid-19 Directory on Vaccination System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file register.php. The manipulation of the argument txtfullname/txtage/txtaddress/txtphone leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222853 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/E1CHO/cve_hub/blob/main/covid-19-vaccination%20vlun%20pdf/covid-19-vaccination%20xss(2).pdf | Exploit Third Party Advisory |
https://vuldb.com/?id.222853 | Third Party Advisory |
https://vuldb.com/?ctiid.222853 | Permissions Required |
Configurations
Configuration 1 (hide)
|
Information
Published : 2023-03-11 10:15
Updated : 2023-03-15 13:55
NVD link : CVE-2023-1354
Mitre link : CVE-2023-1354
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
design_and_implementation_of_covid-19_directory_on_vaccination_system_project
- design_and_implementation_of_covid-19_directory_on_vaccination_system