A vulnerability was found in RocketSoft Rocket LMS 1.7. It has been declared as problematic. This vulnerability affects unknown code of the file /contact/store of the component Contact Form. The manipulation of the argument name/subject/message leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is VDB-232756.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2023-06-30T07:31:03.883Z

Updated: 2024-08-02T06:55:03.558Z

Reserved: 2023-06-30T06:41:27.203Z

Link: CVE-2023-3477

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-06-30T08:15:21.417

Modified: 2024-05-17T02:27:31.490

Link: CVE-2023-3477

cve-icon Redhat

No data.