Cross Site Scripting (XSS) vulnerability in sourcecodester Student Study Center Desk Management System 1.0 allows attackers to run arbitrary code via crafted GET request to web application URL.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors Products
Student Study Center Desk Management System Project
  • Student Study Center Desk Management System

Configuration 1 [-]

cpe:2.3:a:student_study_center_desk_management_system_project:student_study_center_desk_management_system:1.0:*:*:*:*:*:*:*
References
Link Resource
https://github.com/oye-ujjwal/CVE/blob/main/CVE-2023-36317 Exploit Third Party Advisory
https://www.sourcecodester.com Not Applicable
https://www.sourcecodester.com/php/16298/student-study-center-desk-management-system-using-php-oop-and-mysql-db-free-source-code Product
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-08-23T00:00:00

Updated: 2023-08-23T21:33:47.791145

Reserved: 2023-06-21T00:00:00

Link: CVE-2023-36317

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-08-23T22:15:08.550

Modified: 2023-08-25T13:19:43.420

Link: CVE-2023-36317

JSON object: View

cve-icon Redhat Information

No data.

CWE