CVE-2022-1840
Home Clean Services Management System cross site scripting
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability, which was classified as problematic, has been found in Home Clean Services Management System 1.0. This issue affects register.php?link=registerand. The manipulation with the input <script>alert(1)</script> leads to cross site scripting. The attack may be initiated remotely but demands authentication. Exploit details have been disclosed to the public.
Se ha encontrado una vulnerabilidad, clasificada como problemática, en Home Clean Services Management System versión 1.0. Este problema afecta a register.php?link=registerand. La manipulación con la entrada conlleva a un ataque de tipo cross site scripting. El ataque puede iniciarse de forma remota pero exige autenticación. Los detalles de la explotación han sido divulgados al público
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-05-24 CVE Reserved
- 2022-05-24 CVE Published
- 2023-12-15 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (2)
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Home Clean Services Management System Project Search vendor "Home Clean Services Management System Project" | Home Clean Services Management System Search vendor "Home Clean Services Management System Project" for product "Home Clean Services Management System" | 1.0 Search vendor "Home Clean Services Management System Project" for product "Home Clean Services Management System" and version "1.0" | - |
Affected
| ||||||