SourceCodester Sanitization Management System cross site scripting
CVE-2022-3942

4.3MEDIUM

Key Information:

Vendor: Sourcecodester
Status: Sanitization Management System
Vendor: CVE Published:; 11 November 2022

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A vulnerability was found in SourceCodester Sanitization Management System and classified as problematic. This issue affects some unknown processing of the file php-sms/?p=request_quote. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-213449 was assigned to this vulnerability.

Affected Version(s)

Sanitization Management System

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2022-3942
Created by maikroservice

References

https://www.zerodayinitiative.com/advisories/ZDI-22-532/

https://vuldb.com/?id.213449

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

🟡
Public PoC available
Nov 11, 2022
👾
Exploit known to exist
Nov 11, 2022
Vulnerability published
Nov 11, 2022
Vulnerability Reserved
Nov 11, 2022