CVE Details
Basic Information
| Title | SourceCodester Grade Point Average GPA Calculator index.php cross site scripting |
|---|---|
| Type | cve |
| Published | 2023-03-30T22:00:04.661Z |
| Modified | 2024-08-02T05:57:25.176Z |
Product Information
| Vendor | SourceCodester |
|---|---|
| Product | Grade Point Average GPA Calculator |
| Version | 1.0 |
CVSS Information
| Base Score | 3.5 (LOW) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N |
AI Analysis
| AI Description | A cross-site scripting (XSS) vulnerability in the SourceCodester GPA Calculator allows remote attackers to inject malicious scripts via the ‘page’ argument in index.php. This could lead to session hijacking or unauthorized actions. The vulnerability is considered low severity but should be addressed to prevent potential attacks. |
|---|---|
| AI Severity | Medium |
| AI Vendor | SourceCodester |
| AI Product | Grade Point Average GPA Calculator |
| AI Version | 1.0 |
Affected Products
- SourceCodester Grade Point Average GPA Calculator 1.0
Additional Information
| CWE List | CWE-79 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as problematic has been found in SourceCodester Grade Point Average GPA Calculator 1.0. This affects an unknown part of the file index.php. The manipulation of the argument page leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-224631.