What is CVE-2023-5302?

CVE-2023-5302 is a low-severity vulnerability in Sourcecodester Best Courier Management System, classified under Cross-site Scripting. CVSS score: 3.5/10. Published 2023-09-30.

How severe is CVE-2023-5302?

Low severity. CVSS v3 base score is 3.5 out of 10.

Is CVE-2023-5302 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

XSS in Sourcecodester Best Courier Management System

CVE-2023-5302

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Courier Management System 1.0. This issue affects some unknown processing of the component Manage Account Page. The manipulation of the argument Fi…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.001 (21.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.5 (Low). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N.

Affected products

Sourcecodester Best Courier Management System — versions 1.0

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

Public proof-of-concept exploits

References

vuldb.com/ (vdb-entry, technical-description)
vuldb.com/ (signature, permissions-required)
github.com/rohit0x5/poc/blob/main/cve_2 (exploit)

Frequently asked questions

What is CVE-2023-5302?: CVE-2023-5302 is a low-severity vulnerability in Sourcecodester Best Courier Management System, classified under Cross-site Scripting. CVSS score: 3.5/10. Published 2023-09-30.
How severe is CVE-2023-5302?: Low severity. CVSS v3 base score is 3.5 out of 10.
Is CVE-2023-5302 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.