CVE-2022-2748

A vulnerability was found in SourceCodester Simple Online Book Store System. It has been classified as problematic. Affected is an unknown function of the file /admin/edit.php. The manipulation of the argument eid leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-206016.
References
Link Resource
https://vuldb.com/?id.206016 Third Party Advisory VDB Entry
https://vuldb.com/?id.206016 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:simple_online_book_store_system_project:simple_online_book_store_system:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:01

Type Values Removed Values Added
References () https://vuldb.com/?id.206016 - Third Party Advisory, VDB Entry () https://vuldb.com/?id.206016 - Third Party Advisory, VDB Entry
CVSS v2 : unknown
v3 : 6.1
v2 : unknown
v3 : 3.5

Information

Published : 2022-08-11 05:15

Updated : 2024-11-21 07:01


NVD link : CVE-2022-2748

Mitre link : CVE-2022-2748

CVE.ORG link : CVE-2022-2748


JSON object : View

Products Affected

simple_online_book_store_system_project

  • simple_online_book_store_system
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')