{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2023-23161","assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","dateUpdated":"2024-08-02T10:28:40.789Z","dateReserved":"2023-01-11T00:00:00.000Z","datePublished":"2023-02-10T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre","dateUpdated":"2023-04-03T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar."}],"affected":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}],"references":[{"url":"https://phpgurukul.com/projects/Art-Gallery-MS-PHP.zip"},{"url":"https://phpgurukul.com/art-gallery-management-system-using-php-and-mysql/"},{"url":"https://github.com/rahulpatwari/CVE/blob/main/CVE-2023-23161/CVE-2023-23161.txt"},{"url":"http://packetstormsecurity.com/files/171642/Art-Gallery-Management-System-Project-1.0-Cross-Site-Scripting.html"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"n/a"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T10:28:40.789Z"},"title":"CVE Program Container","references":[{"url":"https://phpgurukul.com/projects/Art-Gallery-MS-PHP.zip","tags":["x_transferred"]},{"url":"https://phpgurukul.com/art-gallery-management-system-using-php-and-mysql/","tags":["x_transferred"]},{"url":"https://github.com/rahulpatwari/CVE/blob/main/CVE-2023-23161/CVE-2023-23161.txt","tags":["x_transferred"]},{"url":"http://packetstormsecurity.com/files/171642/Art-Gallery-Management-System-Project-1.0-Cross-Site-Scripting.html","tags":["x_transferred"]}]}]}}