VYPR
leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-243133 was assigned to this vulnerability.","additionalType":"https://schema.org/SoftwareApplication","sameAs":["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5695"]},"keywords":"CVE-2023-5695, Codeastro Internet Banking System, Codeastro Internet Banking System","mentions":[{"@type":"SoftwareApplication","name":"Internet Banking System","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Codeastro"}},{"@type":"SoftwareApplication","name":"Internet Banking System","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Codeastro"}}],"isAccessibleForFree":true},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://portal.vyprsec.ai/"},{"@type":"ListItem","position":2,"name":"CVEs","item":"https://portal.vyprsec.ai/cves"},{"@type":"ListItem","position":3,"name":"CVE-2023-5695","item":"https://portal.vyprsec.ai/cves/CVE-2023-5695"}]}]}
Unrated severityNVD Advisory· Published Oct 22, 2023· Updated Aug 2, 2024

CodeAstro Internet Banking System pages_reset_pwd.php cross site scripting

CVE-2023-5695

Description

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pages_reset_pwd.php. The manipulation of the argument email with the input testing%40example.com'%26%25 leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-243133 was assigned to this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.