XSS in PHPGurukul Online Security Guards Hiring System 1.0 search-request.php
CVE-2023-0527 Published on January 27, 2023
PHPGurukul Online Security Guards Hiring System search-request.php cross site scripting
A vulnerability was found in PHPGurukul Online Security Guards Hiring System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file search-request.php. The manipulation of the argument searchdata with the input "><script>alert(document.domain)</script> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-219596.
Timeline
Advisory disclosed
CVE reserved
VulDB entry created
VulDB entry last update 27 days later.
Weakness Type
What is a XSS Vulnerability?
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
CVE-2023-0527 has been classified to as a XSS vulnerability or weakness.
Products Associated with CVE-2023-0527
stack.watch emails you whenever new vulnerabilities are published in Onlinesecurityguardshiringsystemproject Online Security Guards Hiring System or PHPGurukul Online Security Guards Hiring System. Just hit a watch button to start following.
Affected Versions
PHPGurukul Online Security Guards Hiring System Version 1.0 is affected by CVE-2023-0527Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.