CVE-2023-3853

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions phpscriptpoint BloodBank version 1.1

Description A problem was found in the processing of the file page.php, which can lead to cross site scripting. The attack may be initiated remotely. The vendor was contacted about this issue but did not respond.

Recommendations For version 1.1, consider disabling access to the page.php file until a fix is available. Restrict access to the affected file to minimize the risk of exploitation.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-3853

Affected Products

Phpscriptpoint Bloodbank

CVE-2023-3853

Weakness Enumeration

Related Identifiers

Affected Products

References · 6