CVE-2023-46451 — Cross-site Scripting in Best Courier Management System

Severity

5.4MEDIUMNVD

EPSS

0.1%

top 69.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedOct 31

Description

Best Courier Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in the change username field.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

CVEList

CVE-2023-46451: Best Courier Management System v1↗2023-10-31

▶

GHSA

GHSA-x5wx-967j-cg2m: Best Courier Management System v1↗2023-10-31

▶