CVE-2023-3464

Name of the Vulnerable Software and Affected Versions SimplePHPscripts Classified Ads Script version 1.8

Description A vulnerability was found in the component URL Parameter Handler of the file /preview.php. The manipulation of the argument p leads to cross site scripting. It is possible to launch the attack remotely.

Recommendations For SimplePHPscripts Classified Ads Script version 1.8, it is recommended to upgrade the affected component. As a temporary workaround, consider restricting access to the /preview.php endpoint until a patch is available. Avoid using the p argument in the affected URL Parameter Handler until the issue is resolved.