A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file user_signup.php. The manipulation of the argument firstname with the input <video/src=x onerror=alert(document.domain)> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-249003.
History

Fri, 06 Dec 2024 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Fabianros
Fabianros e-commerce Website
CPEs cpe:2.3:a:fabianros:e-commerce_website:1.0:*:*:*:*:*:*:*
Vendors & Products Fabianros
Fabianros e-commerce Website

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2023-12-26T00:00:07.088Z

Updated: 2024-08-02T08:50:08.236Z

Reserved: 2023-12-25T14:10:13.406Z

Link: CVE-2023-7108

cve-icon Vulnrichment

Updated: 2024-08-02T08:50:08.236Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-29T01:42:53.997

Modified: 2024-12-06T19:52:53.580

Link: CVE-2023-7108

cve-icon Redhat

No data.