CVE-2023-39518

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-39518

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-39518.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-39518

Aliases

GHSA-2jxx-r967-f76p

Published

2023-08-08T18:31:36Z

Modified

2025-10-15T02:42:42.140161Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

social-media-skeleton stored Cross-site Scripting vulnerability

Details

social-media-skeleton is an uncompleted social media project implemented using PHP, MySQL, CSS, JavaScript, and HTML. Versions 1.0.0 until 1.0.3 have a stored cross-site scripting vulnerability. The problem is patched in v1.0.3.

References

Affected packages

Git /

Affected ranges

Database specific

{
    "unresolved_versions": [
        {
            "events": [
                {
                    "introduced": "1.0.0"
                },
                {
                    "fixed": "1.0.3"
                }
            ],
            "type": ""
        }
    ]
}