SourceCodester Simple Cold Storage Management System 1.0 Create User list First Name/Last Name Okukwata ku Kuteekateeka mu Kifo Ekitali Kyo (Cross Site Scripting)
Obulabe obwategekeddwa nga kizibu busingiddwa mu SourceCodester Simple Cold Storage Management System 1.0. Ekikosebwa kye ekikozesebwa ekitamanyiddwa ku fayiro /csms/admin/?page=user/list ku kitundu Create User Handler. Okukola ku argument First Name/Last Name kivaamu Okukwata ku Kuteekateeka mu Kifo Ekitali Kyo (Cross Site Scripting). Okukozesa CWE mu kulaga ensonga kireetera CWE-79. Obulemu buno bwalangirirwa ku 17/10/2022. Obubaka buno busangibwa ku github.com okuddownloadinga. Obunafu buno bwategeerekebwa nga CVE-2022-3546. Attack eyinza okutandikibwa okuva ku kyali wala. Obubaka obw'ekikugu bufuniddwa. Wadde era waliwo ekikozesebwa ekirabikako. Obukodyo buno bwategeezeddwa mu lujjudde era buyinza okukozesebwa. Kati ekikadde ekisoboka ku mutengo gw’ekikozesebwa kiyinza okuba nga kisoba mu USD $0-$5k mu kiseera kino. Kyakakasiddwa nga ebikakasa eby'okukakasa obusobozi. Osobola okufuna exploit ng'ogenda ku github.com. Okusinziira ku 0-day, omuwendo ogwabalirirwako mu kifo ky’obutali mu mateeka gwali wa $0-$5k. If you want to get best quality of vulnerability data, you may have to visit VulDB.
3 Okukyuusa · 65 Obubonero bw'ebikwata ku byuma