Lucene search
China National Vulnerability DatabaseCNVD-2023-29408HistoryApr 18, 2023 - 12:00 a.m.
Campcodes Online Traffic Offense Management System Cross-Site Scripting Vulnerability (CNVD-2023-29408)
2023-04-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
campcodes online traffic offense management system
cross-site scripting
vulnerability
user-supplied data
web script
html
exploitation
filtering
escaping
cnvd-2023-29408
0.001 Low
EPSS
Percentile
41.7%
Campcodes Online Traffic Offense Management System is a web-based traffic offense management system. A cross-site scripting vulnerability exists in Campcodes Online Traffic Offense Management System v1.0. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the parameter id of the file /classes/Users.php, which could be exploited by an attacker to inject a carefully crafted payload to to execute arbitrary Web script or HTML.
Related
cve
cve
CVE-2023-2076
2023-04-14 20:15:09
nvd
nvd
CVE-2023-2076
2023-04-14 20:15:09
cvelist
cvelist
prion
prion
Cross site scripting
2023-04-14 20:15:00