Vulnerability Details CVE-2023-26773
Cross Site Scripting vulnerability found in Sales Tracker Management System v.1.0 allows a remote attacker to gain privileges via the product list function in the Master.php file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.1%
CVSS Severity
CVSS v3 Score 6.1
References
- https://packetstormsecurity.com/files/171686/Sales-Tracker-Management-System-1.0-Cross-Site-Scripting.html
- https://twitter.com/retrymp3
- https://www.sourcecodester.com/php/16061/sales-tracker-management-system-using-php-free-source-code.html
- https://www.sourcecodester.com/users/tips23
- https://packetstormsecurity.com/files/171686/Sales-Tracker-Management-System-1.0-Cross-Site-Scripting.html
- https://twitter.com/retrymp3
- https://www.sourcecodester.com/php/16061/sales-tracker-management-system-using-php-free-source-code.html
- https://www.sourcecodester.com/users/tips23
Products affected by CVE-2023-26773
-
cpe:2.3:a:sales_tracker_management_system_project:sales_tracker_management_system:1.0