Lucene search

[email protected]NVD:CVE-2023-37687

HistoryAug 08, 2023 - 12:15 p.m.

CVE-2023-37687

2023-08-0812:15:11

CWE-89

[email protected]

web.nvd.nist.gov

nurse hiring system

xss

vulnerability

admin page

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

54.4%

JSON

Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the View Request of Nurse Page in the Admin portal.

Affected configurations

Nvd

Node

phpgurukulonline_nurse_hiring_systemMatch1.0

VendorProductVersionCPE
phpgurukulonline_nurse_hiring_system1.0cpe:2.3:a:phpgurukul:online_nurse_hiring_system:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phpgurukul	online_nurse_hiring_system	1.0	cpe:2.3:a:phpgurukul:online_nurse_hiring_system:1.0:::::::*

References

online.com

phpgurukul.com

github.com/rt122001/CVES/blob/main/CVE-2023-37687.txt

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

54.4%

JSON

Related for NVD:CVE-2023-37687

cve1 cvelist1 prion1