Movie Ticket Booking System POST Request cross site scripting
CVE-2022-4249

3.5LOW

Key Information:

Vendor: Unspecified
Status: Movie Ticket Booking System
Vendor: CVE Published:; 1 December 2022

🔔 Create Unspecified Vulnerability Alert

What is CVE-2022-4249?

A vulnerability, which was classified as problematic, was found in Movie Ticket Booking System. Affected is an unknown function of the component POST Request Handler. The manipulation of the argument ORDER_ID leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-214626 is the identifier assigned to this vulnerability.

Affected Version(s)

Movie Ticket Booking System

References

https://github.com/aman05382/movie_ticket_booking_system_...

https://vuldb.com/?id.214626

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 1, 2022
Vulnerability Reserved
Dec 1, 2022