Описание
A flaw has been found in PHPGurukul Car Rental Project 3.0. Affected by this issue is some unknown functionality of the file /carrental/search.php. Executing manipulation of the argument autofocus can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been published and may be used.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- Product
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:car_rental_project:3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
4.3 Medium
CVSS3
6.1 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 4.3
github
5 месяцев назад
A flaw has been found in PHPGurukul Car Rental Project 3.0. Affected by this issue is some unknown functionality of the file /carrental/search.php. Executing manipulation of the argument autofocus can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been published and may be used.
EPSS
Процентиль: 20%
0.00064
Низкий
4.3 Medium
CVSS3
6.1 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-79