CVE-2024-4644 | SourceCodester Prison Management System 1.0 changepassword.php cross site scripting

Inserito da Angelo Barbosa | Mag 8, 2024 | CVE

A vulnerability has been found in SourceCodester Prison Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /Employee/changepassword.php. The manipulation of the argument txtold_password/txtnew_password/txtconfirm_password leads to cross site scripting.

This vulnerability was named CVE-2024-4644. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-4644 | SourceCodester Prison Management System 1.0 changepassword.php cross site scripting

Post correlati

CVE-2024-0133 | NVIDIA Container Toolkit/GPU Operator toctou

CVE-2024-7323 | Digiwin EasyFlow .NET 5.x/6.1.x/6.6.x absolute path traversal

CVE-2024-44099 | Google Android information disclosure

CVE-2024-1353 | PHPEMS up to 1.0 index.api.php index picurl deserialization