CVE-2022-4251
Movie Ticket Booking System editBooking.php cross site scripting
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
A vulnerability was found in Movie Ticket Booking System and classified as problematic. Affected by this issue is some unknown functionality of the file editBooking.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-214628.
Una vulnerabilidad fue encontrada en Movie Ticket Booking System y clasificada como problemática. Una función desconocida del archivo editBooking.php es afectada por esta vulnerabilidad. La manipulación conduce a Cross-Site Scripting (XSS). El ataque puede lanzarse de forma remota. El exploit ha sido divulgado al público y puede utilizarse. El identificador de esta vulnerabilidad es VDB-214628.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-12-01 CVE Reserved
- 2022-12-01 CVE Published
- 2024-06-23 EPSS Updated
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-707: Improper Neutralization
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://vuldb.com/?id.214628 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://github.com/aman05382/movie_ticket_booking_system_php/issues/4 | 2024-08-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Movie Ticket Booking System Project Search vendor "Movie Ticket Booking System Project" | Movie Ticket Booking System Search vendor "Movie Ticket Booking System Project" for product "Movie Ticket Booking System" | - | - |
Affected
| ||||||