CVE-2023-41593
MEDIUMDairy Farm Shop Management System Using PHP and MySQL <1.1 - XSS
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in Dairy Farm Shop Management System Using PHP and MySQL v1.1 allow attackers to execute arbitrary web scripts and HTML via a crafted payload injected into the Category and Category Field parameters.
Exploits (1)
References (4)
Core 4
Core References
Various Sources
https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet
Third Party Advisory
https://github.com/MATRIXDEVIL/CVE/blob/main/CVE-2023-41593
Not Applicable
https://portswigger.net/web-security/cross-site-scripting
Scores
CVSS v3
5.4
EPSS
0.0036
EPSS Percentile
58.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-79
Status
published
Products (1)
phpgurukul/dairy_farm_shop_management_system
1.1
Published
Sep 11, 2023
Tracked Since
Feb 18, 2026