Zoo Management System Content Module cross site scripting
CVE-2022-1816

3.5LOW

Key Information:

Vendor: Unspecified
Status: Zoo Management System
Vendor: CVE Published:; 23 May 2022

🔔 Create Unspecified Vulnerability Alert

What is CVE-2022-1816?

A vulnerability, which was classified as problematic, has been found in Zoo Management System 1.0. Affected by this issue is /zoo/admin/public_html/view_accounts?type=zookeeper of the content module. The manipulation of the argument admin_name with the input alert(1) leads to an authenticated cross site scripting. Exploit details have been disclosed to the public.

Affected Version(s)

Zoo Management System 1.0

References

https://github.com/Xor-Gerke/webray.com.cn/blob/main/cve/...

x_refsource_MISC

https://vuldb.com/?id.200558

x_refsource_MISC

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 23, 2022
Vulnerability Reserved
May 23, 2022