CVE-2023-7132 | code-projects Intern Membership Management System 2.0 User Registration /user_registration/ userName/firstName/lastName/userEmail cross site scripting

A vulnerability was found in code-projects Intern Membership Management System 2.0. It has been classified as problematic. This affects an unknown part of the file /user_registration/ of the component User Registration. The manipulation of the argument userName/firstName/lastName/userEmail with the input "><ScRiPt>confirm(document.domain)</ScRiPt>h0la leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-7132. Access to the local network is required for this attack. Furthermore, there is an exploit available.

CVE-2023-7132 | code-projects Intern Membership Management System 2.0 User Registration /user_registration/ userName/firstName/lastName/userEmail cross site scripting

Related Posts

CVE-2023-6853 | kalcaddle KodExplorer up to 4.51.03 app.php index path server-side request forgery

CVE-2024-6104 | HashiCorp Shared library up to 0.7.6 go-retryablehttp log file

CVE-2024-28669 | DedeCMS 5.7 /dede/freelist_edit.php cross-site request forgery

CVE-2024-2781 | Elementor Website Builder Pro Plugin up to 3.20.1 on WordPress video_html_tag cross site scripting