CVE-2022-3942 — Improper Neutralization in Sanitization Management System

CWE-707 — Improper Neutralization CWE-79 — Cross-site Scripting3 documents3 sources

Severity

6.1MEDIUMNVD

CNA4.3

EPSS

0.3%

top 45.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sourcecodester Sanitization Management System

Timeline

PublishedNov 11

Description

A vulnerability was found in SourceCodester Sanitization Management System and classified as problematic. This issue affects some unknown processing of the file php-sms/?p=request_quote. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-213449 was assigned to this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages1 packages

▶CVEListV5sourcecodester/sanitization_management_systemn/a

🔴Vulnerability Details

CVEList

SourceCodester Sanitization Management System cross site scripting↗2022-11-11

▶

GHSA

GHSA-v4pr-v4jh-9958: A vulnerability was found in SourceCodester Sanitization Management System and classified as problematic↗2022-11-11

▶