Unrated severityNVD Advisory· Published Jul 12, 2023· Updated Oct 22, 2024

GZ Scripts Vacation Rental Website HTTP POST Request cross site scripting

CVE-2023-3642

Description

A vulnerability was found in GZ Scripts Vacation Rental Website 1.8 and classified as problematic. Affected by this issue is some unknown functionality of the file /VacationRentalWebsite/property/8/ad-has-principes/ of the component HTTP POST Request Handler. The manipulation of the argument username/title/comment leads to cross site scripting. The attack may be launched remotely. The identifier of this vulnerability is VDB-233888.

Affected products

GZ Scripts/Vacation Rental Websitellm-create2 versions
=1.8+ 1 more
- (no CPE)range: =1.8
- (no CPE)range: 1.8

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

vuldb.commitresignature
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000