SourceCodester Sanitization Management System cross site scripting
CVE-2022-3942

4.3MEDIUM

Key Information:

Vendor: Sourcecodester
Status: Sanitization Management System
Vendor: CVE Published:; 11 November 2022

🔔 Create Sourcecodester Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2022-3942?

A vulnerability was found in SourceCodester Sanitization Management System and classified as problematic. This issue affects some unknown processing of the file php-sms/?p=request_quote. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-213449 was assigned to this vulnerability.

Affected Version(s)

Sanitization Management System

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2022-3942
Created by maikroservice

References

https://www.zerodayinitiative.com/advisories/ZDI-22-532/

https://vuldb.com/?id.213449

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Nov 11, 2022
👾
Exploit known to exist
Nov 11, 2022
Vulnerability published
Nov 11, 2022
Vulnerability Reserved
Nov 11, 2022