A vulnerability classified as problematic has been found in SourceCodester Online Discussion Forum Site 1.0. Affected is an unknown function of the file admin\posts\manage_post.php. The manipulation of the argument content leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-231012.
References
| Link | Resource |
|---|---|
| https://github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/Online%20Discussion%20Forum%20Site%20-%20multiple%20vulnerabilities.md#11xss-vulnerability-in-adminpostsmanage_postphpcontent | Exploit |
| https://vuldb.com/?ctiid.231012 | Permissions Required Third Party Advisory |
| https://vuldb.com/?id.231012 | Third Party Advisory |
| https://github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/Online%20Discussion%20Forum%20Site%20-%20multiple%20vulnerabilities.md#11xss-vulnerability-in-adminpostsmanage_postphpcontent | Exploit |
| https://vuldb.com/?ctiid.231012 | Permissions Required Third Party Advisory |
| https://vuldb.com/?id.231012 | Third Party Advisory |
Configurations
History
22 Apr 2025, 14:51
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Razormist online Discussion Forum Site
Razormist |
|
| CPE | cpe:2.3:a:razormist:online_discussion_forum_site:1.0:*:*:*:*:*:*:* |
Information
Published : 2023-06-07 15:15
Updated : 2025-04-22 14:51
NVD link : CVE-2023-3143
Mitre link : CVE-2023-3143
CVE.ORG link : CVE-2023-3143
JSON object : View
Products Affected
razormist
- online_discussion_forum_site
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')