CVE-2023-0732

CVSS V2 None CVSS V3 None
Description
A vulnerability has been found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. Affected by this vulnerability is the function registration of the file oews/classes/Users.php of the component POST Request Handler. The manipulation of the argument firstname/middlename/lastname/email/contact leads to cross site scripting. The attack can be launched remotely. The identifier VDB-220369 was assigned to this vulnerability.
Overview
  • CVE ID
  • CVE-2023-0732
  • Assigner
  • cna@vuldb.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-02-07T20:15:08
  • Last Modified Date
  • 2023-02-15T16:25:05
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:online_eyewear_shop_project:online_eyewear_shop:1.0:*:*:*:*:*:*:* 1 OR
References
Reference URL Reference Tags
https://vuldb.com/?ctiid.220369 Permissions Required Third Party Advisory
https://vuldb.com/?id.220369 Permissions Required Third Party Advisory
History
Created Old Value New Value Data Type Notes
2023-04-17 07:20:53 Added to TrackCVE
2023-04-17 07:20:54 Weakness Enumeration new
2023-04-17 08:12:26 CVSS V3 information new
2023-04-17 08:12:26 CVSS V2 information new