Lucene search

VulDBCVELIST:CVE-2022-2686

HistoryAug 06, 2022 - 6:25 a.m.

CVE-2022-2686 oretnom23 Fast Food Ordering System Menu List Page cross site scripting

2022-08-0606:25:13

CWE-79

VulDB

www.cve.org

cve-2022-2686; fast food ordering system; cross site scripting; menu list page; vdb-205725; remote attack; vulnerability disclosure

CVSS3

3.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

21.4%

JSON

A vulnerability, which was classified as problematic, was found in oretnom23 Fast Food Ordering System. This affects an unknown part of the component Menu List Page. The manipulation of the argument Description leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205725 was assigned to this vulnerability.

CNA Affected

[
  {
    "product": "Fast Food Ordering System",
    "vendor": "oretnom23",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

References

github.com/L1917/Fast-Food-Ordering-System/blob/main/Fast-Food-Ordering-System.md

vuldb.com/?id.205725

CVSS3

3.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

21.4%

JSON

Related for CVELIST:CVE-2022-2686