CVE-2023-44173

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Sep 28, 2023

Updated: Sep 29, 2023

CWE ID 79

Summary

CVE-2023-44173 is a Reflected Cross-Site Scripting (XSS) vulnerability affecting the Online Movie Ticket Booking System version 1.0. An authenticated attacker can exploit this flaw by injecting malicious scripts into the application's input fields, which are then reflected in the response and executed in the user's web browser. This vulnerability poses a significant risk, potentially leading to unauthorized access to user data or session hijacking. Users are strongly advised to update the system as soon as a patch is available to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sz8yMQ
https://www.cve.org/CVERecord?id=CVE-2023-44173
https://nvd.nist.gov/vuln/detail/CVE-2023-44173

Back to Vulnerability Database

CVE-2023-44173

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations