First published: Fri Feb 10 2023(Updated: )
A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Art Gallery Management System | =1.0 | |
PHPGurukul Art Gallery Management System | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-23161 is a reflected cross-site scripting (XSS) vulnerability that can allow attackers to execute malicious scripts.
To fix CVE-2023-23161, validate and sanitize user inputs, particularly for the artname parameter in the ART TYPE option.
CVE-2023-23161 affects users of Art Gallery Management System Project version 1.0 and PHPGurukul's version of the same.
Attackers can exploit CVE-2023-23161 to inject and execute arbitrary web scripts or HTML content in the affected application.
The criticality of CVE-2023-23161 is determined by its potential for exploitation and impact on user data and privacy.