CVE-2024-1265 | CodeAstro University Management System 1.0 Attendance Management /att_add.php Student Name cross site scripting

Inserito da Angelo Barbosa | Feb 6, 2024 | CVE

A vulnerability classified as problematic has been found in CodeAstro University Management System 1.0. Affected is an unknown function of the file /att_add.php of the component Attendance Management. The manipulation of the argument Student Name leads to cross site scripting.

This vulnerability is traded as CVE-2024-1265. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-1265 | CodeAstro University Management System 1.0 Attendance Management /att_add.php Student Name cross site scripting

Post correlati

CVE-2024-8901 | Amazon AWS ALB Route Directive Adapter for Istio 1.0/1.1 authentication spoofing (GHSA-789x-wph8-m68r)

CVE-2024-8645 | Wireshark up to 4.0.15/4.2.5 SPRT Dissector uninitialized pointer (ID 19559)

CVE-2024-3218 | Shibang Communications IP Network Intercom Broadcasting System 1.0 busyscreenshotpush.php jsondata[callee]/jsondata[imagename] path traversal

CVE-2023-52311 | Paddle up to 2.5.x _wget_download os command injection (pdsa-2023-020)