CVE-2023-3888

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 25, 2023

Updated: May 17, 2024

Summary

CVE-2023-3888: A critical vulnerability was identified in the Campcodes Beauty Salon Management System 1.0. This issue, which has been publicly disclosed, affects an unspecified functionality of the /admin/admin-profile.php file. The vulnerability allows for cross-site scripting attacks, which can be executed remotely. The manipulation of the adminname argument is the cause of this issue, and it has been assigned the identifier VDB-235250. Users of this system are urged to apply the necessary patches or updates to mitigate this problematic vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sG6uJm
https://www.cve.org/CVERecord?id=CVE-2023-3888
https://nvd.nist.gov/vuln/detail/CVE-2023-3888

Back to Vulnerability Database

CVE-2023-3888

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations