CVE-2022-2773

CWE-79Cross-site Scripting (XSS)4 documents4 sources
Severity
6.1MEDIUM
EPSS
0.2%
top 54.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Sourcecodester Apartment Visitor Management System
Timeline
PublishedAug 11
Latest updateAug 12

Description

A vulnerability was found in SourceCodester Apartment Visitor Management System. It has been classified as problematic. This affects an unknown part of the file profile.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-206169 was assigned to this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:NExploitability: 2.1 | Impact: 1.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-v7jm-wjv4-vw9j: A vulnerability was found in SourceCodester Apartment Visitor Management System2022-08-12
CVEList
SourceCodester Apartment Visitor Management System profile.php cross site scripting2022-08-11

📋Vendor Advisories

1
CISA
HP OpenView Network Node Manager Remote Code Execution Vulnerability2022-03-25
CVE-2022-2773 (MEDIUM CVSS 6.1) | A vulnerability was found in Source | cvebase.io