CVE-2023-2077

⚪ Do wiadomości

Wykorzystanie podatności w Campcodes Online Traffic Offense Management System umożliwia zdalne przeprowadzenie ataku typu cross-site scripting.

CVSS

3.5

EPSS

0.1%

Exploit

poc

Vendor

campcodes

Opis źródłowy (NVD)

A vulnerability, which was classified as problematic, has been found in Campcodes Online Traffic Offense Management System 1.0. This issue affects some unknown processing of the file /admin/offenses/view_details.php. The manipulation of the argument id leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-226055.

exploit xss Brak patcha

Źródła i daty

Źródło	Wartość
NVD – CVSS	3.5
CISA KEV (aktywnie wykorzystywane)	Nie
FIRST EPSS (prawdopodobieństwo exploita)	0.1%
Opublikowano (NVD)	2023-04-14 20:15:09 UTC
Ostatnia modyfikacja (NVD)	2026-03-17 19:58:31 UTC

Referencje

https://github.com/E1CHO/cve_hub/blob/main/Online%20Traffic%20Offense%20Management%20System/Online%20Traffic%20Offense%20Management%20System%20-%20vuln%205.pdf (cna@vuldb.com) [Exploit, Third Party Advisory]
https://vuldb.com/?ctiid.226055 (cna@vuldb.com) [Permissions Required, Third Party Advisory]
https://vuldb.com/?id.226055 (cna@vuldb.com) [Third Party Advisory]