SourceCodester Simple Online Book Store System edit.php cross site scripting
CVE-2022-2748

3.5LOW

Key Information:

Vendor: Sourcecodester
Status: Simple Online Book Store System
Vendor: CVE Published:; 11 August 2022

Summary

A vulnerability was found in SourceCodester Simple Online Book Store System. It has been classified as problematic. Affected is an unknown function of the file /admin/edit.php. The manipulation of the argument eid leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-206016.

Affected Version(s)

Simple Online Book Store System

References

https://vuldb.com/?id.206016

x_refsource_MISC

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 11, 2022
Vulnerability Reserved
Aug 10, 2022