Home

Description

A reflected cross-site scripting (XSS) vulnerability in the component /index.php/cuzh4 of PHP Inventory Management System 1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

PUBLISHED Reserved 2023-06-21 | Published 2025-12-15 | Updated 2025-12-16 | Assigner mitre

References

github.com/ThuanNguyen115685/Report/blob/main/XSS.md

gist.github.com/...anhthuan/f345c8ea0551c10ead197680f2ba9c66

cve.org (CVE-2023-36337)

nvd.nist.gov (CVE-2023-36337)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.