SourceCodester Event Registration System cross site scripting
CVE-2022-4233

2.4LOW

Key Information:

Vendor: Sourcecodester
Status: Event Registration System
Vendor: CVE Published:; 30 November 2022

Summary

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. The attack can be launched remotely. The associated identifier of this vulnerability is VDB-214591.

Affected Version(s)

Event Registration System 1.0

References

https://vuldb.com/?id.214591

CVSS V3.1

Score:

2.4

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 30, 2022
Vulnerability Reserved
Nov 30, 2022