exploitDog

CVE-2023-36936

Опубликовано: 10 июл. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Cross-Site Scripting (XSS) vulnerability in PHPGurukul Online Security Guards Hiring System using PHP and MySQL 1.0 allows attackers to execute arbitrary code via a crafted payload to the search booking box.

Ссылки

https://medium.com/%40ridheshgohil1092/cve-2023-36936-xss-online-security-guards-hiring-system-773f394f6117
Exploit
https://packetstormsecurity.com
Third Party Advisory
VDB Entry
https://medium.com/%40ridheshgohil1092/cve-2023-36936-xss-online-security-guards-hiring-system-773f394f6117
Exploit
https://packetstormsecurity.com
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgurukul:online_security_guards_hiring_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00213

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-jgmq-c4w3-2q95

CVSS3: 6.1

github

больше 2 лет назад

Cross-Site Scripting (XSS) vulnerability in PHPGurukul Online Security Guards Hiring System using PHP and MySQL 1.0 allows attackers to execute arbitrary code via a crafted payload to the search booking box.

EPSS

Процентиль: 44%

0.00213

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79