Podatność CVE-2023-46974
Publikacja: 2023-12-07   Modyfikacja: 2023-12-14

Opis:
Cross Site Scripting vulnerability in Best Courier Management System v.1.000 allows a remote attacker to execute arbitrary code via a crafted payload to the page parameter in the URL.

Typ:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Affected software
Mayurik -> Courier management system 

 Referencje:
https://youtu.be/5oVfJHT_-Ys
https://github.com/yte121/CVE-2023-46974/
Copyright 2024, cxsecurity.com

 

Back to Top