Описание
Cross-Site Scripting (XSS) vulnerability exists in the User Registration and User Profile features of Codeastro Bus Ticket Booking System v1.0 allows an attacker to execute arbitrary code into the Full Name and Address fields during user registration or profile editing.
Ссылки
- Product
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:codeastro:bus_ticket_booking_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00043
Низкий
5 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5
github
10 месяцев назад
Cross-Site Scripting (XSS) vulnerability exists in the User Registration and User Profile features of Codeastro Bus Ticket Booking System v1.0 allows an attacker to execute arbitrary code into the Full Name and Address fields during user registration or profile editing.
EPSS
Процентиль: 13%
0.00043
Низкий
5 Medium
CVSS3
Дефекты
CWE-79