Vulnerability Details CVE-2023-41593
Multiple cross-site scripting (XSS) vulnerabilities in Dairy Farm Shop Management System Using PHP and MySQL v1.1 allow attackers to execute arbitrary web scripts and HTML via a crafted payload injected into the Category and Category Field parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.2%
CVSS Severity
CVSS v3 Score 5.4
References
- https://github.com/MATRIXDEVIL/CVE/blob/main/CVE-2023-41593
- https://portswigger.net/web-security/cross-site-scripting
- https://www.acunetix.com/websitesecurity/cross-site-scripting/
- https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet
- https://github.com/MATRIXDEVIL/CVE/blob/main/CVE-2023-41593
- https://portswigger.net/web-security/cross-site-scripting
- https://www.acunetix.com/websitesecurity/cross-site-scripting/
- https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet
Products affected by CVE-2023-41593
-
cpe:2.3:a:phpgurukul:dairy_farm_shop_management_system:1.1