Unrated severityNVD Advisory· Published Oct 6, 2020· Updated Aug 4, 2024
CVE-2020-23832
CVE-2020-23832
Description
A Persistent Cross-Site Scripting (XSS) vulnerability in message_admin.php in Projectworlds Car Rental Management System v1.0 allows unauthenticated remote attackers to harvest an admin login session cookie and steal an admin session upon an admin login.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Projectworlds/Car Rental Management Systemdescription
- Range: =1.0
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/158795/Car-Rental-Management-System-1.0-Cross-Site-Scripting.htmlmitrex_refsource_MISC
- projectworlds.inmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.