CVE-2023-36158
Summary
| CVE | CVE-2023-36158 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-08-04 00:15:00 UTC |
| Updated | 2023-08-08 19:00:00 UTC |
| Description | Cross Site Scripting (XSS) vulnerability in sourcecodester Toll Tax Management System 1.0 allows remote attackers to run arbitrary code via the First Name and Last Name fields on the My Account page. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Toll Tax Management System Project | Toll Tax Management System | 1.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Toll Tax Management System in PHP/OOP Free Source Code | Free Source Code Projects and Tutorials | MISC | www.sourcecodester.com | |
| toll.com is for sale | www.oxley.com | MISC | toll.com | |
| Toll Tax Management System - Multiple stored XSS | Cryptex Hackscape | MISC | cyberredteam.tech | |
| github.com/unknown00759/CVE-2023-36158/blob/main/CVE-2023-36158.md | MISC | github.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.