A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter of the /admin/contactus.php component.
References
Link | Resource |
---|---|
https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql/ | Product |
Configurations
History
14 Nov 2023, 22:04
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:phpgurukul:maid_hiring_management_system:1.0:*:*:*:*:*:*:* | |
First Time |
Phpgurukul maid Hiring Management System
Phpgurukul |
18 Oct 2023, 15:19
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:anujkumar:maid_hiring_management_system:1.0:*:*:*:*:*:*:* | |
First Time |
Anujkumar
Anujkumar maid Hiring Management System |
21 Jul 2023, 15:03
Type | Values Removed | Values Added |
---|---|---|
First Time |
Maid Hiring Management System Project maid Hiring Management System
Maid Hiring Management System Project |
|
CPE | cpe:2.3:a:maid_hiring_management_system_project:maid_hiring_management_system:1.0:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
References | (MISC) https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql/ - Product | |
CWE | CWE-79 |
13 Jul 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-13 17:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-37746
Mitre link : CVE-2023-37746
CVE.ORG link : CVE-2023-37746
JSON object : View
Products Affected
phpgurukul
- maid_hiring_management_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')