CVE-2022-2645: XSS
First published: Thu Aug 04 2022(Updated: )
A vulnerability has been found in SourceCodester Garage Management System and classified as problematic. Affected by this vulnerability is an unknown functionality of the file edituser.php. The manipulation of the argument id with the input 1\"><ScRiPt>alert(1)</sCrIpT> leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205573 was assigned to this vulnerability.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Garage Management System Project Garage Management System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-2645?
The severity of CVE-2022-2645 is medium.
How does CVE-2022-2645 affect the SourceCodester Garage Management System?
CVE-2022-2645 affects an unknown functionality of the file edituser.php in the SourceCodester Garage Management System.
What is the affected software of CVE-2022-2645?
The affected software of CVE-2022-2645 is Garage Management System Project Garage Management System.
What is the CWE classification of CVE-2022-2645?
The CWE classification of CVE-2022-2645 is CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
How can I fix the cross-site scripting vulnerability in SourceCodester Garage Management System?
To fix the cross-site scripting vulnerability in SourceCodester Garage Management System, patch or update the software to the latest version.