VYPR
leads to cross site s","datePublished":"2023-03-09T21:33:42.294Z","dateModified":"2024-08-02T05:41:00.042Z","publisher":{"@type":"Organization","@id":"https://portal.vyprsec.ai#publisher","name":"VYPR","url":"https://portal.vyprsec.ai","logo":{"@type":"ImageObject","url":"https://portal.vyprsec.ai/icon.svg","width":64,"height":64},"description":"Real-time CVE intelligence newsroom — feeds, exploits, vendor advisories, and AI-synthesized insights."},"author":{"@type":"Organization","@id":"https://portal.vyprsec.ai#publisher","name":"VYPR","url":"https://portal.vyprsec.ai","logo":{"@type":"ImageObject","url":"https://portal.vyprsec.ai/icon.svg","width":64,"height":64},"description":"Real-time CVE intelligence newsroom — feeds, exploits, vendor advisories, and AI-synthesized insights."},"proficiencyLevel":"Expert","about":{"@type":"Thing","@id":"https://nvd.nist.gov/vuln/detail/CVE-2023-1302","name":"CVE-2023-1302","identifier":"CVE-2023-1302","description":"A vulnerability, which was classified as problematic, was found in SourceCodester File Tracker Manager System 1.0. This affects an unknown part of the file normal/borrow1.php. The manipulation of the argument id with the input 1\"> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222663.","additionalType":"https://schema.org/SoftwareApplication","sameAs":["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1302"]},"keywords":"CVE-2023-1302, Sourcecodester Sales Tracker Management System","mentions":[{"@type":"SoftwareApplication","name":"Sales Tracker Management System","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Sourcecodester"}}],"isAccessibleForFree":true},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://portal.vyprsec.ai/"},{"@type":"ListItem","position":2,"name":"CVEs","item":"https://portal.vyprsec.ai/cves"},{"@type":"ListItem","position":3,"name":"CVE-2023-1302","item":"https://portal.vyprsec.ai/cves/CVE-2023-1302"}]}]}
← All advisories
Unrated severityNVD Advisory· Published Mar 9, 2023· Updated Aug 2, 2024

SourceCodester File Tracker Manager System borrow1.php cross site scripting

CVE-2023-1302

Description

A vulnerability, which was classified as problematic, was found in SourceCodester File Tracker Manager System 1.0. This affects an unknown part of the file normal/borrow1.php. The manipulation of the argument id with the input 1"> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222663.

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

Root cause

"Missing output sanitization of the `id` parameter in `borrow1.php` allows reflected cross-site scripting."

Attack vector

An attacker sends a crafted GET request to `/file_manager/normal/borrow1.php` with a malicious `id` parameter containing a script payload, such as `1"><script>alert(1111)</script>` [ref_id=1]. The server reflects this input directly into the HTTP response without sanitization, causing the browser to execute the injected script. The attack is remotely exploitable over HTTP with no authentication required beyond a valid session cookie [ref_id=1].

Affected code

The vulnerability is in the file `/file_manager/normal/borrow1.php` [ref_id=1]. The `id` parameter is echoed back into the page without sanitization, allowing arbitrary HTML and JavaScript injection [ref_id=1].

What the fix does

No patch is provided in the bundle. The advisory does not include a fix. To remediate, the application should properly encode or sanitize the `id` parameter before reflecting it in the HTML output, for example by using `htmlspecialchars()` in PHP or an equivalent output-escaping function.

Preconditions

  • networkThe attacker must be able to send HTTP GET requests to the vulnerable endpoint
  • authA valid PHP session cookie (PHPSESSID) is required

Reproduction

1. Send a GET request to `/file_manager/normal/borrow1.php?id=1%22%3E%3Cscript%3Ealert(1111)%3C/script%3E` with a valid `PHPSESSID` cookie [ref_id=1]. 2. Observe that the browser executes the injected JavaScript, displaying an alert box with "1111" [ref_id=1]. 3. To demonstrate cookie theft, replace the payload with `1"><script>alert(document.cookie)</script>` [ref_id=1].

Generated on May 24, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

3

News mentions

0

No linked articles in our index yet.