CVE-2024-1031 | CodeAstro Expense Management System 1.0 Add Expenses Page 5-Add-Expenses.php item cross site scripting

Inserito da Angelo Barbosa | Gen 29, 2024 | CVE

A vulnerability was found in CodeAstro Expense Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file templates/5-Add-Expenses.php of the component Add Expenses Page. The manipulation of the argument item leads to cross site scripting.

This vulnerability was named CVE-2024-1031. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-1031 | CodeAstro Expense Management System 1.0 Add Expenses Page 5-Add-Expenses.php item cross site scripting

Post correlati

CVE-2024-21879 | Enphase IQ Gateway prior 8.2.4225 URL Parameter command injection

CVE-2024-5241 | Huashi Private Cloud CDN Live Streaming Acceleration Server ipconfig_new.php os command injection

CVE-2024-6676 | witmy my-springsecurity-plus up to 2024-07-03 /api/user params.dataScope sql injection

CVE-2024-2994 | Tenda FH1203 2.0.1.6 GetParentControlInfo mac stack-based overflow