CVE-2024-12000 | code-projects Blood Bank System 1.0 Setting updatesettings.php firstname cross site scripting

Inserito da Angelo Barbosa | Nov 29, 2024 | CVE

A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /controllers/updatesettings.php of the component Setting Handler. The manipulation of the argument firstname leads to cross site scripting.

The identification of this vulnerability is CVE-2024-12000. The attack may be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2024-12000 | code-projects Blood Bank System 1.0 Setting updatesettings.php firstname cross site scripting

Post correlati

CVE-2024-5096 | Hipcam Device up to 20240511 MAC Address /log/wifi.mac information disclosure

CVE-2024-6613 | Mozilla Firefox up to 127.x iFrame Iterator infinite loop

CVE-2024-21601 | Juniper Junos OS flowd race condition (JSA75742)

CVE-2024-0540 | Tenda W9 1.0.0.7(4456) httpd formOfflineSet ssidIndex stack-based overflow