PT-2024-13079 · Unknown · My Food Recipe Using Php With Source Code
Aaditya Singh Rajawat
·
Published
2024-03-12
·
Updated
2025-07-07
·
CVE-2023-43292
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
My Food Recipe Using PHP with Source Code version 1.0
Description
The issue allows a local attacker to execute arbitrary code via a crafted payload to the
Recipe Name, Procedure, and ingredients parameters. This enables the attacker to perform Cross Site Scripting attacks.Recommendations
For My Food Recipe Using PHP with Source Code version 1.0, consider validating and sanitizing user input for the
Recipe Name, Procedure, and ingredients parameters to prevent the execution of arbitrary code. As a temporary workaround, restrict access to these parameters to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
My Food Recipe Using Php With Source Code