First published: Wed Sep 14 2022(Updated: )
Garage Management System 1.0 is vulnerable to Stored Cross Site Scripting (XSS) on several parameters. The vulnerabilities exist during creating or editing the parts under parameters. Using the XSS payload, the Stored XSS triggered and can be used for further attack vector.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Garage Management System Project Garage Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-36668 is medium with a CVSS score of 5.4.
CVE-2022-36668 refers to a vulnerability in Garage Management System 1.0 that allows for stored cross-site scripting (XSS) attacks on several parameters.
The vulnerability in CVE-2022-36668 can be exploited by using a crafted XSS payload during the creation or editing of parts in Garage Management System 1.0.
An attacker can leverage the stored XSS vulnerability in CVE-2022-36668 to execute malicious code and potentially launch further attack vectors.
To fix CVE-2022-36668, it is recommended to apply the latest security patches or updates provided by Garage Management System Project.