CVE-2023-3785

EUVD-2023-44418
A vulnerability was found in PaulPrinting CMS 2018. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument firstname/lastname/address/city/state leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-235052.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.5 LOW
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
VulDBCNA
3.5 LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
Common Weakness Enumeration
References
https://seclists.org/fulldisclosure/2023/Jul/39
https://vuldb.com/?ctiid.235052
https://vuldb.com/?id.235052
https://www.vulnerability-lab.com/get_content.php?id=2285
https://seclists.org/fulldisclosure/2023/Jul/39
https://vuldb.com/?ctiid.235052
https://vuldb.com/?id.235052
https://www.vulnerability-lab.com/get_content.php?id=2285