First published: Tue Nov 29 2022(Updated: )
Garage Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via /garage/php_action/createBrand.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Garage Management System Project Garage Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-44279 is medium (6.1).
Garage Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via /garage/php_action/createBrand.php.
The Cross Site Scripting (XSS) vulnerability in Garage Management System v1.0 allows attackers to inject malicious scripts into the application, potentially leading to unauthorized actions or data theft.
To fix the Cross Site Scripting (XSS) vulnerability in Garage Management System v1.0, it is recommended to sanitize user input and use proper output encoding.
You can find more information about CVE-2022-44279 in the reference link: [https://github.com/Onetpaer/bug_report/blob/main/vendors/mayuri_k/garage-management-system/xss1.md](https://github.com/Onetpaer/bug_report/blob/main/vendors/mayuri_k/garage-management-system/xss1.md)