Improper Neutralization

CVE-2022-3992

Low

2.4/10

Summary

A vulnerability classified as problematic was found in SourceCodester Sanitization Management System. Affected by this vulnerability is an unknown functionality of the file admin/?page=system_info of the component Banner Image Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The associated identifier of this vulnerability is VDB-213571.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: HIGH
Confidentiality Impact: NONE
Availability Impact: NONE

CWE-707 - Improper Neutralization

The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being read from an upstream component or sent to a downstream component.

References

Advisory Timeline

Published Nov 14, 2022

Improper Neutralization

CVE-2022-3992

Summary

CWE-707 - Improper Neutralization

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS