CVE-2022-2768

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
6.1MEDIUM
EPSS
0.2%
top 54.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Sourcecodester Library Management System
Timeline
PublishedAug 11
Latest updateAug 12

Description

A vulnerability classified as problematic was found in SourceCodester Library Management System. This vulnerability affects unknown code of the file /qr/I/. The manipulation of the argument error leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is VDB-206164.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:NExploitability: 2.1 | Impact: 1.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-6fmv-ffvh-m9r5: A vulnerability classified as problematic was found in SourceCodester Library Management System2022-08-12
CVEList
SourceCodester Library Management System cross site scripting2022-08-11
CVE-2022-2768 (MEDIUM CVSS 6.1) | A vulnerability classified as probl | cvebase.io