CVE-2022-43144

MEDIUM

Canteen Management System v1.0 - XSS

Title source: llm

Description

A cross-site scripting (XSS) vulnerability in Canteen Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

Exploits (1)

nomisec WRITEUP 4 stars

by mudassiruddin · poc

https://github.com/mudassiruddin/CVE-2022-43144-Stored-XSS

View Code ZIP pw:eip

References (3)

Core 3

Core References

Exploit, Third Party Advisory

https://github.com/mudassiruddin/CVE-2022-43144-Stored-XSS

Product

https://www.sourcecodester.com/download-code?nid=15688&title=Canteen+Management+System+Project+Source+Code+in+PHP+Free+Download

Product

https://www.sourcecodester.com/php/15688/canteen-management-system-project-source-code-php.html

Scores

CVSS v3 5.4

EPSS 0.0201

EPSS Percentile 83.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (1)

canteen_management_system_project/canteen_management_system 1.0

Published Nov 08, 2022

Tracked Since Feb 18, 2026