CVE-2024-0181 | RRJ Nueva Ecija Engineer Online Portal 1.0 Admin Panel /admin/admin_user.php Firstname/Lastname/Username cross site scripting

Inserito da Angelo Barbosa | Gen 1, 2024 | CVE

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin_user.php of the component Admin Panel. The manipulation of the argument Firstname/Lastname/Username leads to cross site scripting.

This vulnerability is known as CVE-2024-0181. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0181 | RRJ Nueva Ecija Engineer Online Portal 1.0 Admin Panel /admin/admin_user.php Firstname/Lastname/Username cross site scripting

Post correlati

CVE-2024-24004 | jshERP 3.3 findInOutDetail sql injection (Issue 99)

CVE-2024-4604 | Magarsus Consultancy SSO 1.0 redirect

CVE-2024-29509 | Artifex Ghostscript up to 10.2.x PDFPassword heap-based overflow

CVE-2024-5583 | posimyththemes The Plus Addons for Elementor Plugin up to 5.6.2 on WordPress Testimonials Widget carousel_direction cross site scripting