CVE-2023-6767 | SourceCodester Wedding Guest e-Book 1.0 /endpoint/add-guest.php name cross site scripting

Inserito da Angelo Barbosa | Dic 13, 2023 | CVE

A vulnerability, which was classified as problematic, was found in SourceCodester Wedding Guest e-Book 1.0. This affects an unknown part of the file /endpoint/add-guest.php. The manipulation of the argument name leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-6767. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2023-6767 | SourceCodester Wedding Guest e-Book 1.0 /endpoint/add-guest.php name cross site scripting

Post correlati

CVE-2023-52168 | 7-Zip up to 24.00 NTFS NtfsHandler.cpp heap-based overflow

CVE-2024-1566 | Redirects Plugin up to 1.2.1 on WordPress Save authorization

CVE-2023-38610 | Apple iOS/iPadOS prior 17.0 Kernel Memory memory corruption

CVE-2024-26858 | Linux Kernel up to 6.6.21/6.7.9 mlx5e metadata_map null pointer dereference (d1f71615dbb3/936ef086161a/b7cf07586c40)