What is the severity of CVE-2022-1980?

CVE-2022-1980 has been rated as problematic.

How do I fix CVE-2022-1980?

To fix CVE-2022-1980, sanitize and validate all user inputs in the 'Telephone' textbox to prevent cross-site scripting.

What type of vulnerability is CVE-2022-1980?

CVE-2022-1980 is classified as a cross-site scripting (XSS) vulnerability.

Which version of the software is affected by CVE-2022-1980?

CVE-2022-1980 affects SourceCodester Product Show Room Site version 1.0.

Where does CVE-2022-1980 occur in the application?

CVE-2022-1980 occurs in the file /admin/?page=system_info/contact_info.

Vulnerability/
CVE-2022-1980

medium

4.8

CWE

2/6/2022

15/4/2025

CVE-2022-1980: SourceCodester Product Show Room Site cross site scripting

First published: Thu Jun 02 2022(Updated: )

A vulnerability was found in SourceCodester Product Show Room Site 1.0. It has been rated as problematic. This issue affects the file /admin/?page=system_info/contact_info. The manipulation of the textbox Telephone with the input <script>alert(1)</script> leads to cross site scripting. The attack may be initiated remotely but requires authentication. Exploit details have been disclosed to the public.

Credit: cna@vuldb.com

Affected Software	Affected Version	How to fix
SourceCodester Product Show Room	=1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-1980?
CVE-2022-1980 has been rated as problematic.
How do I fix CVE-2022-1980?
To fix CVE-2022-1980, sanitize and validate all user inputs in the 'Telephone' textbox to prevent cross-site scripting.
What type of vulnerability is CVE-2022-1980?
CVE-2022-1980 is classified as a cross-site scripting (XSS) vulnerability.
Which version of the software is affected by CVE-2022-1980?
CVE-2022-1980 affects SourceCodester Product Show Room Site version 1.0.
Where does CVE-2022-1980 occur in the application?
CVE-2022-1980 occurs in the file /admin/?page=system_info/contact_info.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/weakness
agent/severity
agent/author
agent/title
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/product show room site project
canonical/sourcecodester product show room
version/sourcecodester product show room/1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.