CVSS 3.1 Score 5.4 of 10 (medium)


Published Sep 29, 2023
Updated: Apr 11, 2024


A vulnerability, CVE-2023-5286, has been discovered in SourceCodester Expense Tracker App v1. This vulnerability affects the add_category.php file of the Category Handler component. It allows for cross-site scripting attacks through manipulation of the category_name argument. The exploit has been publicly disclosed and can be launched remotely. Remediation steps should be taken to address this issue to prevent potential damage to organizations using the affected product.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5286 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options