CVE-2022-36668: XSS
First published: Wed Sep 14 2022(Updated: )
Garage Management System 1.0 is vulnerable to Stored Cross Site Scripting (XSS) on several parameters. The vulnerabilities exist during creating or editing the parts under parameters. Using the XSS payload, the Stored XSS triggered and can be used for further attack vector.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Garage Management System Project Garage Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-36668?
The severity of CVE-2022-36668 is medium with a CVSS score of 5.4.
What is CVE-2022-36668?
CVE-2022-36668 refers to a vulnerability in Garage Management System 1.0 that allows for stored cross-site scripting (XSS) attacks on several parameters.
How does the vulnerability in CVE-2022-36668 manifest?
The vulnerability in CVE-2022-36668 can be exploited by using a crafted XSS payload during the creation or editing of parts in Garage Management System 1.0.
What can an attacker do with CVE-2022-36668?
An attacker can leverage the stored XSS vulnerability in CVE-2022-36668 to execute malicious code and potentially launch further attack vectors.
Is there a fix for CVE-2022-36668?
To fix CVE-2022-36668, it is recommended to apply the latest security patches or updates provided by Garage Management System Project.
- collector/nvd-index
- agent/weakness
- agent/type
- vendor/garage management system project
- canonical/garage management system project garage management system
- version/garage management system project garage management system/1.0