CVE-2023-44486

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-44486
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

02 Jan 2024, 16:15

Type Values Removed Values Added
References
  • {'url': 'https://fluidattacks.com/advisories/carpenter/', 'tags': ['Exploit', 'Third Party Advisory'], 'source': 'help@fluidattacks.com'}
  • {'url': 'https://projectworlds.in/', 'tags': ['Product'], 'source': 'help@fluidattacks.com'}
CWE CWE-79
CVSS v2 : unknown
v3 : 6.1 		v2 : unknown
v3 : unknown
Summary
  • (es) Online Blood Donation Management System v1.0 es afectado por múltiples vulnerabilidades de Cross-Site Scripting Almacenado. El parámetro 'address' del recurso users/register.php se copia en el documento users/member.php como texto plano entre etiquetas. Cualquier entrada se repite sin modificaciones en la respuesta de users/member.php.
Summary (en) Online Blood Donation Management System v1.0 is vulnerable to multiple Store Cross-Site Scripting vulnerabilities. The 'address' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php response. (en) Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CPE cpe:2.3:a:projectworlds:online_blood_donation_management_system:1.0:*:*:*:*:*:*:*
Information

Published : 2023-10-31 22:15

Updated : 2024-01-02 16:15

NVD link : CVE-2023-44486

Mitre link : CVE-2023-44486

CVE.ORG link : CVE-2023-44486

JSON object : View

Products Affected

No product.

CWE

No CWE.