SourceCodester Sanitization Management System SystemSettings.php cross site scripting
CVE-2022-3672

3.5LOW

Key Information:

Vendor: Sourcecodester
Status: Sanitization Management System
Vendor: CVE Published:; 26 October 2022

Summary

A vulnerability, which was classified as problematic, has been found in SourceCodester Sanitization Management System 1.0. This issue affects some unknown processing of the file /php-sms/classes/SystemSettings.php. The manipulation of the argument name/shortname leads to cross site scripting. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-212015.

Affected Version(s)

Sanitization Management System 1.0

References

https://vuldb.com/?id.212015

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Oct 26, 2022
Vulnerability Reserved
Oct 24, 2022