A vulnerability, which was classified as problematic, was found in SourceCodester Bank Management System 1.0. This affects the file /mnotice.php?id=2. The manipulation of the argument notice with the input <script>alert(1)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
https://github.com/joinia/webray.com.cn/blob/main/php-bank/phpbankxss.md | Exploit Third Party Advisory |
https://vuldb.com/?id.202035 | Permissions Required Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2022-06-15T13:10:14
Updated: 2022-06-15T13:10:13
Reserved: 2022-06-15T00:00:00
Link: CVE-2022-2087
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-15T13:15:09.047
Modified: 2022-06-23T20:18:52.003
Link: CVE-2022-2087
JSON object: View
Redhat Information
No data.
CWE