Merge branch 'master' of github.com:CVEProject/cvelist

2025-08-04 08:44:25 +00:00 · 2022-08-15 07:00:28 +00:00 · 2022-08-15 07:00:28 +00:00 · 513b9856ac
commit 513b9856ac
parent 396575d795 589ef45c7d
1 changed files with 58 additions and 3 deletions
--- a/2022/2xxx/CVE-2022-2814.json
+++ b/2022/2xxx/CVE-2022-2814.json
@ -4,14 +4,69 @@
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2022-2814",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "TITLE": "SourceCodester Simple and Nice Shopping Cart Script login.php cross site scripting",
+        "REQUESTER": "cna@vuldb.com",
+        "ASSIGNER": "cna@vuldb.com",
+        "STATE": "PUBLIC"
+    },
+    "generator": "vuldb.com",
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "SourceCodester",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Simple and Nice Shopping Cart Script",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n\/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-79 Cross Site Scripting"
+                    }
+                ]
+            }
+        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "A vulnerability has been found in SourceCodester Simple and Nice Shopping Cart Script and classified as problematic. Affected by this vulnerability is an unknown functionality of the file \/mkshope\/login.php. The manipulation of the argument msg leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206401 was assigned to this vulnerability."
+            }
+        ]
+    },
+    "impact": {
+        "cvss": {
+            "version": "3.1",
+            "baseScore": "3.5",
+            "vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:R\/S:U\/C:N\/I:L\/A:N"
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https:\/\/s1.ax1x.com\/2022\/08\/13\/vNcnHA.png"
+            },
+            {
+                "url": "https:\/\/vuldb.com\/?id.206401"
            }
        ]
    }