PT-2022-22621 · Sourcecodester · Sourcecodester Sanitization Management System
Gauravbhatia
·
Published
2022-10-15
·
Updated
2022-10-20
·
CVE-2022-3519
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
SourceCodester Sanitization Management System version 1.0
Description
A problematic issue was found in the Quote Requests Tab component, where the manipulation of the
Manage Remarks argument leads to cross-site scripting. The attack can be launched remotely.Recommendations
For SourceCodester Sanitization Management System version 1.0, consider disabling the
Manage Remarks argument in the Quote Requests Tab until a patch is available to prevent cross-site scripting attacks. Restrict access to the Quote Requests Tab to minimize the risk of exploitation.Fix
Improper Neutralization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sourcecodester Sanitization Management System