CVE-2023-44174

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Sep 28, 2023

Updated: Sep 29, 2023

CWE ID 79

Summary

CVE-2023-44174 is a stored Cross-Site Scripting (XSS) vulnerability affecting the Online Movie Ticket Booking System version 1.0. An authenticated attacker can inject malicious scripts into the targeted website, which are then executed in the context of the victim's browser whenever they access the affected page. This can lead to unauthorized access to sensitive information, session hijacking, or other malicious actions. Users are advised to update the system as soon as a patch is available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sz9Cn3
https://www.cve.org/CVERecord?id=CVE-2023-44174
https://nvd.nist.gov/vuln/detail/CVE-2023-44174

Back to Vulnerability Database

CVE-2023-44174

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations