๐ CVE-2022-2293 | SourceCodester Simple Sales Management System 1.0 create customer_name cross site scripting
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability classified as problematic was found in SourceCodester Simple Sales Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ci_ssms/index.php/orders/create. The manipulation of the argument customer_name with the input <script>alert("XSS")</script>
leads to cross site scripting.
This vulnerability is known as CVE-2022-2293. The attack can be launched remotely. Furthermore, there is an exploit available. ...