Vulnerability Details CVE-2023-37150
Sourcecodester Online Pizza Ordering System v1.0 has a Cross-site scripting (XSS) vulnerability in "/admin/index.php?page=categories" Category item.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.7%
CVSS Severity
CVSS v3 Score 6.1
References
- https://github.com/Trinity-SYT-SECURITY/XSS_vuln_issue/blob/main/Online%20Pizza%20Ordering%20System%20v1.0.md
- https://www.chtsecurity.com/news/57fd2fe6-11d9-421d-9087-88b4d5090452
- https://www.chtsecurity.com/news/c27389f3-a70b-4a71-952a-49f273d1db90
- https://github.com/Trinity-SYT-SECURITY/XSS_vuln_issue/blob/main/Online%20Pizza%20Ordering%20System%20v1.0.md
- https://www.chtsecurity.com/news/57fd2fe6-11d9-421d-9087-88b4d5090452
- https://www.chtsecurity.com/news/c27389f3-a70b-4a71-952a-49f273d1db90
Products affected by CVE-2023-37150
-
cpe:2.3:a:online_pizza_ordering_system_project:online_pizza_ordering_system:1.0