exploitDog

CVE-2022-43117

Опубликовано: 21 нояб. 2022

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Sourcecodester Password Storage Application in PHP/OOP and MySQL 1.0 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities via the Name, Username, Description and Site Feature parameters.

Ссылки

https://drive.google.com/file/d/1ZmAuKMVzUpL8pt5KXQJk8IyPECoVP9xw/view?usp=sharing
Exploit
Third Party Advisory
https://github.com/RashidKhanPathan/CVE-2022-43117
Exploit
Third Party Advisory
https://drive.google.com/file/d/1ZmAuKMVzUpL8pt5KXQJk8IyPECoVP9xw/view?usp=sharing
Exploit
Third Party Advisory
https://github.com/RashidKhanPathan/CVE-2022-43117
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:password_storage_application_project:password_storage_application:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02631

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-hc5m-68rf-53fj

CVSS3: 5.4

github

около 3 лет назад

Sourcecodester Password Storage Application in PHP/OOP and MySQL 1.0 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities via the Name, Username, Description and Site Feature parameters.

EPSS

Процентиль: 85%

0.02631

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79