CVE-2022-27348

Name of the Vulnerable Software and Affected Versions Social Codia SMS version 1

Description The issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field in add post.php. This enables the execution of malicious code, potentially leading to security breaches.

Recommendations For Social Codia SMS version 1, consider disabling the add post.php functionality until a patch is available to prevent exploitation of the stored cross-site scripting issue. Restrict access to the Post Title text field to minimize the risk of malicious payload injection.