CVE-2023-7136 in Record Management System情報

要約

〜によって MITRE • 2023年12月28日

A vulnerability classified as problematic was found in code-projects Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /main/doctype.php of the component Document Type Handler. The manipulation of the argument docname with the input "> leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-249139.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

VulDB

予約する

2023年12月28日

公開

2023年12月28日

モデレーション

承諾済み

エントリ

VDB-249139

CPE

準備完了

CWE

CWE-79 (確認済み)

エクスプロイト

ダウンロード

CVSS

5.4 (NVD)

EPSS

0.00130

KEV

いいえ

アクティビティ

非常低い

セクター

Agriculture, Finance, ...

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-7136
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-7136
CVE Details	https://www.cvedetails.com/cve/CVE-2023-7136/

◂ 前概要次 ▸

Do you need the next level of professionalism?

Upgrade your account now!