← back
CVE-2023-23161

CVE-2023-23161

EPSS 5.9%
Vexday Risk Score
38Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 5.9%KEV nãoPoC públicaNuclei simMetasploit Patch
Lifecycle
10 Feb 2023Published on NVD
03 Apr 2023Public PoC
Weaponization speed
52 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.