CVE-2023-7057

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Dec 22, 2023
Updated: Mar 21, 2024
CWE ID 79

Summary

CVE-2023-7057 is a vulnerability that has been identified in the code-projects Faculty Management System 1.0. The issue affects an unknown functionality of the file /admin/pages/yearlevel.php and can be exploited through cross-site scripting by manipulating the argument Year Level/Section. This vulnerability poses a potential danger to organizations as it allows remote attackers to launch attacks and execute malicious code. It has been disclosed publicly, making it accessible for exploitation. Remediation measures should be taken to address this vulnerability, such as applying patches or updates provided by the vendor.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share