CVE-2023-4555

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published Aug 27, 2023

Updated: May 17, 2024

Summary

CVE-2023-4555 is a newly disclosed vulnerability affecting the SourceCodester Inventory Management System version 1.0. This issue lies in an unidentified functionality of the file suppliar_data.php where the argument name/company can be manipulated, resulting in cross-site scripting (XSS) attacks. Such assaults can be executed remotely, posing a significant risk to users. The vulnerability has been made public, increasing the likelihood of exploitation. The Vulnerability Database (VDB) has assigned it the identifier VDB-238153.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linecorp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8JOFb
https://www.cve.org/CVERecord?id=CVE-2023-4555
https://nvd.nist.gov/vuln/detail/CVE-2023-4555

Back to Vulnerability Database

CVE-2023-4555

CVSS 3.1 Score 8.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations