Vulnerability Description
Simple College Website v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /college_website/index.php?page=. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the page parameter.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Simple College Website Project | Simple College Website | 1.0 |
Related Weaknesses (CWE)
References
- https://gowthamaraj-rajendran.medium.com/simple-college-website-1-0-xss-1f132282ExploitThird Party Advisory
- https://www.sourcecodester.com/php/14548/simple-college-website-using-htmlphpmysProduct
- https://www.sourcecodester.com/sites/default/files/download/oretnom23/simple-colProduct
- https://gowthamaraj-rajendran.medium.com/simple-college-website-1-0-xss-1f132282ExploitThird Party Advisory
- https://www.sourcecodester.com/php/14548/simple-college-website-using-htmlphpmysProduct
- https://www.sourcecodester.com/sites/default/files/download/oretnom23/simple-colProduct
FAQ
What is CVE-2022-40088?
CVE-2022-40088 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Simple College Website v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /college_website/index.php?page=. This vulnerability allows attackers to ex...
How severe is CVE-2022-40088?
CVE-2022-40088 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-40088?
Check the references section above for vendor advisories and patch information. Affected products include: Simple College Website Project Simple College Website.