Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2023-33580

CWE-79 ā€” Cross-site Scripting (XSS)4 documents4 sources
Severity
4.8MEDIUM
EPSS
0.8%
top 26.53%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Phpgurukul Student Study Center Management System
Timeline
PublishedJun 26

Description

Phpgurukul Student Study Center Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in the "Admin Name" field on Admin Profile page.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:NExploitability: 1.7 | Impact: 2.7

Affected Packages1 packages

šŸ”“Vulnerability Details

2
CVEList
CVE-2023-33580: Phpgurukul Student Study Center Management System V1ā†—2023-06-26
ā–¶
GHSA
GHSA-h83r-hgff-qm4q: Phpgurukul Student Study Center Management System V1ā†—2023-06-26
ā–¶

šŸ’„Exploits & PoCs

1
Exploit-DB
Student Study Center Management System v1.0 - Stored Cross-Site Scripting (XSS)ā†—2023-06-19
ā–¶
CVE-2023-33580 (MEDIUM CVSS 4.8) | Phpgurukul Student Study Center Man | cvebase.io