CVE-2022-2814: XSS
First published: Mon Aug 15 2022(Updated: )
A vulnerability has been found in SourceCodester Simple and Nice Shopping Cart Script and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /mkshope/login.php. The manipulation of the argument msg leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206401 was assigned to this vulnerability.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Simple And Nice Shopping Cart Script Project Simple And Nice Shopping Cart Script |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-2814.
What is the severity of CVE-2022-2814?
The severity of CVE-2022-2814 is medium.
What is affected by CVE-2022-2814?
SourceCodester Simple and Nice Shopping Cart Script is affected by CVE-2022-2814.
What is the description of CVE-2022-2814?
CVE-2022-2814 is a cross-site scripting vulnerability in the /mkshope/login.php file of SourceCodester Simple and Nice Shopping Cart Script.
How can I fix CVE-2022-2814?
To fix CVE-2022-2814, it is recommended to apply the latest security patch or update to a version that has fixed the vulnerability.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/tags
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/simple and nice shopping cart script project
- canonical/simple and nice shopping cart script project simple and nice shopping cart script