CVE-2023-3560 in Ticket Booking ScriptИнформация

Сводка

по MITRE • 10.07.2023

A vulnerability, which was classified as problematic, has been found in GZ Scripts Ticket Booking Script 1.8. Affected by this issue is some unknown functionality of the file /load.php. The manipulation of the argument first_name/second_name/phone/address_1/country leads to cross site scripting. The attack may be launched remotely. VDB-233354 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

VulDB

Резервировать

08.07.2023

Раскрытие

10.07.2023

Модерация

принято

Вход

VDB-233354

CPE

готов

CWE

CWE-79 (Подтверждённый)

CVSS

6.1 (NVD)

EPSS

0.00087

KEV

Нет

Деятельности

Очень низкий

Сектор

Energy, Pharma, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-3560
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-3560
CVE Details	https://www.cvedetails.com/cve/CVE-2023-3560/

◂ Предыдущий Обзор Далее ▸

Do you need the next level of professionalism?

Upgrade your account now!