cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-36941,https://securityvulnerability.io/vulnerability/CVE-2023-36941,Cross-Site Scripting Flaw in PHPGurukul Online Fire Reporting System,"A cross-site scripting (XSS) vulnerability exists in the PHPGurukul Online Fire Reporting System Using PHP and MySQL version 1.2. This flaw allows attackers to inject malicious web scripts or HTML through specially crafted payloads entered in the team name, leader, and member fields. If exploited, it can lead to unauthorized script execution in the browser context of users interacting with the application, potentially compromising sensitive information or enabling further exploits.",PHPgurukul,Online Fire Reporting System,6.1,MEDIUM,0.001129999989643693,false,,false,false,false,,,false,false,,2023-07-27T00:00:00.000Z,0
CVE-2023-36942,https://securityvulnerability.io/vulnerability/CVE-2023-36942,Cross-Site Scripting Vulnerability in PHPGurukul Online Fire Reporting System,"The Online Fire Reporting System developed by PHPGurukul is susceptible to a Cross-Site Scripting (XSS) vulnerability. An attacker can exploit this vulnerability by injecting malicious scripts into the website title field. When this data is processed and displayed, it can lead to the execution of arbitrary web scripts or HTML in the context of the user's browser session. This poses significant security risks, including data theft, session hijacking, and other malicious activities that can compromise user safety and system integrity.",PHPgurukul,Online Fire Reporting System,6.1,MEDIUM,0.001129999989643693,false,,false,false,false,,,false,false,,2023-07-27T00:00:00.000Z,0
CVE-2023-36940,https://securityvulnerability.io/vulnerability/CVE-2023-36940,Cross Site Scripting Vulnerability in PHPGurukul Online Fire Reporting System,"A Cross Site Scripting (XSS) vulnerability exists in the PHPGurukul Online Fire Reporting System, version 1.2. This security flaw allows malicious actors to inject arbitrary code into the application via a maliciously crafted payload entered into the search field. If successfully exploited, this vulnerability could lead to unauthorized actions being executed within the browser context of users, posing significant risks to data integrity and confidentiality. Organizations utilizing this system are urged to implement security measures to mitigate potential exploitation.",PHPgurukul,Online Fire Reporting System,4.8,MEDIUM,0.0009399999980814755,false,,false,false,false,,,false,false,,2023-07-10T00:00:00.000Z,0