SimplePHPscripts Simple Blog URL Parameter preview.php cross site scripting
CVE-2023-3474

3.5LOW

Key Information:

Vendor: SimplePHPscripts
Status: Simple Blog
Vendor: CVE Published:; 30 June 2023

🔔 Create SimplePHPscripts Vulnerability Alert

What is CVE-2023-3474?

A vulnerability has been found in SimplePHPscripts Simple Blog 3.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. It is recommended to upgrade the affected component. The identifier VDB-232753 was assigned to this vulnerability.

Affected Version(s)

Simple Blog 3.2

References

https://vuldb.com/?id.232753

vdb-entrytechnical-description

https://vuldb.com/?ctiid.232753

signature

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2023
Vulnerability Reserved
Jun 30, 2023

Credit

skalvin (VulDB User)

CVE-2023-3474 Data

JSON