CVE-2024-0181 | RRJ Nueva Ecija Engineer Online Portal 1.0 Admin Panel /admin/admin_user.php Firstname/Lastname/Username cross site scripting

Inserito da Angelo Barbosa | Gen 1, 2024 | CVE

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin_user.php of the component Admin Panel. The manipulation of the argument Firstname/Lastname/Username leads to cross site scripting.

This vulnerability is known as CVE-2024-0181. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0181 | RRJ Nueva Ecija Engineer Online Portal 1.0 Admin Panel /admin/admin_user.php Firstname/Lastname/Username cross site scripting

Post correlati

CVE-2024-8800 | RabbitLoader Plugin up to 2.21.0 on WordPress cross site scripting

CVE-2024-36035 | Zoho ManageEngine ADAudit Plus up to 8003 User Session Recording sql injection

CVE-2023-46386 | LOYTEC LINX-151/LINX-212 SMTP Client registry.xml credentials storage

CVE-2023-50343 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 API Endpoint access control (KB0109608)