CVE-2023-0563
Summary
| CVE | CVE-2023-0563 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-01-28 23:15:00 UTC |
| Updated | 2023-12-28 14:43:00 UTC |
| Description | A vulnerability classified as problematic has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file add-locker-form.php of the component Assign Locker. The manipulation of the argument ahname leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-219717 was assigned to this vulnerability. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Bank Locker Management System Project | Bank Locker Management System | 1.0 | All | All | All |
| Application | Phpgurukul | Bank Locker Management System | 1.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| vuldb.com | MISC | vuldb.com | |
| vuldb.com | MISC | vuldb.com | |
| Vulnerability/BLMS_XSS_IN_ADMIN_BROWSER.md at main · ctflearner/Vulnerability · GitHub | MISC | github.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.