Vulnerability Details CVE-2022-1840
A vulnerability, which was classified as problematic, has been found in Home Clean Services Management System 1.0. This issue affects register.php?link=registerand. The manipulation with the input <script>alert(1)</script> leads to cross site scripting. The attack may be initiated remotely but demands authentication. Exploit details have been disclosed to the public.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.9%
CVSS Severity
CVSS v3 Score 2.4
CVSS v2 Score 3.5
References
- https://github.com/Xor-Gerke/webray.com.cn/blob/main/cve/Home%20Clean%20Services%20Management%20System/Home%20Clean%20Services%20Management%20System%20Stored%20Cross-Site%20Scripting%28XSS%29.md
- https://vuldb.com/?id.200585
- https://github.com/Xor-Gerke/webray.com.cn/blob/main/cve/Home%20Clean%20Services%20Management%20System/Home%20Clean%20Services%20Management%20System%20Stored%20Cross-Site%20Scripting%28XSS%29.md
- https://vuldb.com/?id.200585
Products affected by CVE-2022-1840
-
Home Clean Services Management System Project » Home Clean Services Management System » Version: 1.0cpe:2.3:a:home_clean_services_management_system_project:home_clean_services_management_system:1.0