Art Gallery Management System v1.0 Stored XSS via fullname param
CVE-2023-23157 Published on February 27, 2023
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fullname parameter on the enquiry page.
Products Associated with CVE-2023-23157
stack.watch emails you whenever new vulnerabilities are published in Artgallerymanagementsystemproject Art Gallery Management System or PHPGurukul Art Gallery Management System. Just hit a watch button to start following.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.